GRC Consultant

GRC Team

The VerSprite GRC team focuses on managing risks for our customers via the following umbrella of services:
Virtual CISO, Enterprise Risk Assessment, Privacy Assessment and Vendor Risk Assessments among others. To do so, we leverage industry frameworks such as ISO 27001, NIST cybersecurity framework, CIS and a methodology unique to VerSprite based on its extensive experience managing GRC projects. We are a dynamic group of threat-inspired professionals working in a fast-paced, collaborative environment to help our clients with Governance, Risk, and Compliance issues. We strive to understand both the business
context of our clients and the behaviors of threat actors to transform issue identification, evaluation, and remediation strategy from theoretical and generic to realistic and tailored.

You will be helping clients by:

• working with a wide variety of clients to deliver professional services and manage business development activities;
• addressing client issues such as: security transformation in business processes, policy, and technological implementation; IT risk identification, remediation planning, and project management; and compliance mapping, gap analysis, and strategic recommendations
• demonstrating knowledge of trends and expertise in IT, security, compliance, and business;
• analyzing, evaluating, and enhancing information technology systems to develop and improve security maturity;
• monitoring progress, managing risks and ensuring key stakeholders are kept informed about progress and expected outcomes;

Requirements:

• A bachelor or master’s degree and approximately 2-3 years of related work experience;
• Understanding of CyberSecurity Frameworks (NIST CSF, ISO 27001, COBIT, CIS);
• Ability to respond to a variety of Compliance issues (PCI-DSS, HIPAA, GDPR, CCPA, Privacy);