Position Details
About this role
Compliance Consultant in a GRC practice delivering assessments, framework implementations, and advisory engagements across SOC 2, ISO 27001, CMMC 2.0, and NIST CSF for diverse clients.
Key Responsibilities
- Client engagement & delivery
- Framework translation & reconciliation
- Risk assessment & control design
- Policy & documentation development
- Audit support & remediation management
Technical Overview
Focus on information security controls, risk assessment, policy development, and audit support with fluency in multiple regulatory standards; experience with GRC frameworks and evidence collection.
Ideal Candidate
The ideal candidate is a mid-career compliance and information security professional with 5+ years delivering audits and framework implementations across SOC 2, ISO 27001, CMMC 2.0, and NIST CSF in a consulting or client-facing capacity. They should hold an active certification (CISA/CISSP/CISM/CRISC/CCSFP) and be adept at communicating findings to executives and boards.
Must-Have Skills
Nice-to-Have Skills
Tools & Platforms
Required Skills
Hard Skills
Soft Skills
Certifications
Required
Industry & Role
Keywords for Your Resume
Deal Breakers
Lack of active certification, Less than 5 years experience in compliance/information security, No consulting or client-facing delivery experience
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile