✦ Luna Orbit — Cybersecurity

GRC Consultant

at Ascend Technologies

📍 Remote, US Remote Posted April 04, 2026
Apply Now → ← Browse All Jobs

Position Details

Type Contract
Experience senior
Exp. Years 3+ years
Education Bachelor’s degree in Cybersecurity, Information Systems, or related field, or equivalent experience
Category Cybersecurity

About this role

GRC Consultant helps Ascend Technologies strengthen clients' cybersecurity posture by aligning governance, risk, and compliance programs with key frameworks and audits across regulated industries.

Key Responsibilities

  • Client engagement & reporting; governance policy development; risk assessments & maturity; regulatory compliance & audit readiness; third-party risk management

Technical Overview

Focus on frameworks like NIST CSF, CIS Controls, ISO 27001, SOC 2, and PCI-DSS; risk assessments, control testing, policy development, and audit-readiness activities.

Ideal Candidate

The ideal candidate is an experienced GRC cybersecurity consultant (3+ years) with strong knowledge of regulatory frameworks (NIST CSF, ISO 27001, SOC 2, HIPAA, PCI-DSS) and a track record of leading risk assessments, policy development, and audit readiness in a consulting context.

Must-Have Skills

Strong understanding of regulatory and security frameworks (HIPAACMMCNIST CSFNIST 800-53ISO 27001SOC 2etc.)Hands-on experience with risk assessmentscontrol testingauditsand policy developmentExcellent written and verbal communication skillsAbility to collaborate across technical and non-technical teamsStrong analytical skills and attention to detail

Nice-to-Have Skills

Bachelor’s degree in CybersecurityInformation Systemsor related fieldor equivalent experienceProfessional certifications such as CISSPCISMCISACRISCExperience with GRC platforms (StandardFusionApptegaVantaetc.)3+ years of relevant cybersecurity and GRC experienceStrong problem-solving and critical-thinking abilities

Tools & Platforms

StandardFusionApptegaVanta

Required Skills

HIPAANIST CSFCIS ControlsISO 27001SOC 2PCI-DSSrisk assessmentspolicy developmentaudit readinessgovernance

Hard Skills

NIST CSFCIS ControlsISO 27001HIPAA OmnibusSOC 2PCI-DSSrisk assessmentspolicy developmentaudit readinessvendor risk managementvulnerability management

Soft Skills

presentationcommunicationstakeholder engagementanalytical thinkingproblem-solving

Certifications

Preferred

CISSPCISMCISACRISC

Industry & Role

Industry Technology Consulting
Job Function Advisory and delivery of GRC and cybersecurity programs for clients
Role Subtype GRC Consultant
Tech Domains Cybersecurity, NIST CSF, ISO 27001, SOC 2

Keywords for Your Resume

GRC ConsultantGRCcybersecurityrisk managementNIST CSFCIS ControlsISO 27001HIPAA OmnibusSOC 2PCI-DSSaudit readinessregulatory standardsvulnerability managementthird-party risk managementpolicy developmentrisk assessmentssecurity programsregulatory compliancestandardsgrcnist csfiso 27001hipaasoc 2pci-dssvendor risk management

Deal Breakers

Lack of practical GRC experience, Inadequate knowledge of core frameworks, Unwillingness to work remotely

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile