GRC Consultant

Job description

GRC Consultant This is a fully remote position PURPOSE: The GRC Cybersecurity Consultant serves as a trusted advisor to Ascend clients, strategically enhancing their cybersecurity posture. This role supports the client’s development, delivery, and continual improvement of comprehensive cybersecurity and compliance programs aligned with frameworks such as NIST CSF, CIS Controls, ISO 27001, HIPAA Omnibus, SOC 2, PCI‑DSS, and other regulatory standards. The consultant also contributes to helping regulated clients prepare for audits (SOC 2, SEC, FDIC, etc.). This position works closely with both business and technical stakeholders to assess risks, implement controls, develop policies, support audit readiness, review security data, and communicate clear, business‑aligned recommendations. Strong presentation and communication skills are essential for translating complex cybersecurity concepts into actionable insights for diverse audiences. RESPONSIBILITIES: Client Engagement & Reporting: - Generate, analyze, and present cybersecurity service reports and dashboards to demonstrate program efficacy and maturity progress. - Translate technical risks and data into business‑relevant insights f...