Governance, Risk & Compliance Consultant

Remote, United States


Avertium is a cyber fusion company with a programmatic approach to measurable cyber maturity outcomes. 

View company page

Avertium is the security partner that companies turn to for end-to-end Cybersecurity solutions that attack the chaos of the cybersecurity landscape with context. By fusing together human expertise and a business-first mindset with the right combination of technology and threat intelligence, Avertium delivers a more comprehensive, more programmatic approach to cybersecurity - one that drives action on the ground and influence in the boardroom. That's why over 1,200 mid-market and enterprise-level organizations across 15 industries turn to Avertium when they want to be more efficient, more effective, and more resilient when waging today's cyber war. Show no weakness.®

The successful candidate will have 5+years of experience in cybersecurity.  Specifically in the areas of security framework control implementation, compliance, risk analysis/management, threat modeling, and/or security engineering/architecture. 

The successful candidate will be cybersecurity focused with an emphasis on compliance controls related to HIPAA, PCI, SOX, ISO, and NIST standards.  The ability to conduct in-depth security compliance assessments with business and technology partners. Must be able to evaluate the design and/or implementation of security controls in place in order to communicate risks to both technical and non-technical personnel, make recommendations on remediation/mitigation, and design multi-faceted solutions. 

The successful candidate will be self-disciplined and able to work on individual tasks, sometimes without clear requirements, and to work well in a team environment. The ideal candidate will have experience in the following areas: 


  • Bachelor's Degree or higher in an information technology field and/or 5+ years in the cybersecurity or compliance industries.
  • 3+ years performing security risk assessments.
  • 5+ years of experience with NIST frameworks.
  • 5+ years of experience with one or more of the following regulatory frameworks, FedRAMP, HIPAA, PCI, ISO (27001/2).
  • Familiarity or Working Knowledge of CMMC, HITRUST, SOC.
  • Demonstrated proficiency with Microsoft Productivity Tools.
  • CISSP, CISA, CISM, Security+, Microsoft and/or other recognized industry certifications.
  • Demonstrated ability to manage and/or conduct multiple projects simultaneously.

In addition to a career in the challenging world of cyber security, Avertium offers competitive salaries, full benefits, unlimited paid time off, participation in 401(k), and opportunities for professional growth and development. We offer the opportunity to work with cutting-edge security technologies in a stimulating work environment.

Avertium provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: CISA CISM CISSP CMMC Compliance FedRAMP Governance HIPAA HITRUST NIST NIST Frameworks Risk analysis Risk assessment SOC Threat intelligence

Perks/benefits: Career development Competitive pay Unlimited paid time off

Regions: Remote/Anywhere North America
Country: United States
Job stats:  31  9  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.