Senior GRC Consultant

SCIGON has an immediate need for a Senior GRC Consultant for a full-time job. Location: Remote, desirable in Hartford, Boston, NYC, Chicago, etc. or in a target market (Los Angeles, San Francisco Bay Area, Florida). Frequent domestic travel throughout the United States and occasional international travel is required (Expectation for 30% travel, though could be more at times; valid passport required)

Responsibilities:
Lead pre-sales activities:
• Explain company’s service offerings
• Identify appropriate services for client needs
• Scope projects and develop time and cost estimates
• Write proposals and Statements of Work
• Maintain proposal and Statement of Work templates
• Maintain scoping questionnaires
Lead information security assessments:
• Explain security risks and compliance requirements
• Conduct document reviews and interviews against compliance requirements and best-practices
• Develop recommendations for remediating risk and compliance gaps
• Write deliverable reports
• Maintain report templates
Support marketing:
• Lead security research and development efforts
• Write informational sheets and whitepapers
• Conduct presentations for clients and at security conferences
Pre-sales and assessment activities are conducted remotely and on-site with clients:
• The majority of the clients are spread throughout the United States
• In some instances international travel may be required

Requirements:
• 4 year degree with 2+ years’ work experience, or 2 year degree with 4+ years’ work experience, or 6+ years of progressive technical work experience
• Experience assessing compliance with HIPAA, PCI-DSS, and/or ISO 27000
• PCI QSA certification (preferably current)
• ISO 27000 Lead Auditor or ISO 27000 Lead Implementer a plus
• SOX, FISMA, Safe Harbor, NERC/FERC experience is a plus
• Vulnerability scanning/pen testing technique experience is a plus
• Consulting experience is required

Submit Resume