NEWPosted 2 hours ago

Job ID: JOB_ID_2507

Role Overview

We are seeking a highly experienced Cybersecurity Governance, Risk, and Compliance (GRC) Consultant for a critical remote engagement. This role is designed for a senior professional with over 10 years of experience in the information security domain, specifically focusing on regulatory alignment and risk mitigation strategies. The successful candidate will lead efforts to ensure full compliance with industry-standard frameworks, supporting proactive risk mitigation and positioning the organization for future HITRUST certification. This is a high-impact role requiring deep technical knowledge of NIST standards and the ability to communicate complex security risks to executive stakeholders.

Key Responsibilities

  • Ensure full organizational alignment with NIST SP 800-53 Revision 5, covering domains such as Risk Assessment (RA), Access Control (AC), System Communications Protection (SC), and Incident Response (IR).
  • Incorporate and implement the NIST Privacy Framework to enhance data protection and privacy governance.
  • Build and maintain a comprehensive enterprise risk register, developing detailed treatment plans for risk mitigation, transfer, acceptance, or avoidance.
  • Map existing risks and mitigation efforts directly to HITRUST CSF control domains to facilitate a streamlined path toward future certification.
  • Develop and deliver high-quality documentation, including security dashboards and executive summaries for senior leadership.
  • Collaborate extensively with internal stakeholders to validate security findings and support broader security governance efforts.
  • Manage generic managerial responsibilities including reporting, risk management, and client relationship management.

Technical Requirements

  • Minimum of 10+ years of professional experience in Cybersecurity GRC or Information Security Risk Analysis.
  • Must have hands-on experience with HIPAA and HITRUST frameworks.
  • Expert-level knowledge of NIST SP 800-30 and NIST SP 800-53 Revision 5.
  • Proven track record in building risk registers and managing complex security audits.
  • Strong understanding of Access Control, System Communications, and Incident Response protocols.

Strategic Impact

As a Senior GRC Consultant, you will be the primary architect of the organization’s compliance roadmap. By aligning technical controls with business objectives, you will reduce the organization’s threat profile while ensuring that all regulatory mandates are met with precision. Your work in mapping controls to HITRUST CSF will be foundational for the company’s long-term security strategy and market competitiveness in 2026 and beyond.

Special Requirements

Remote role. Requires 10+ years experience. Domain restrictions: Must have HIPAA & HITRUST & NIST SP 800-30, NIST SP 800-53 expertise.

Compensation & Location

Salary: $145,000 – $195,000 per year (Estimated)

Location: Remote

Recruiter / Company – Contact Information

Recruiter / Employer: Diverse Lynx LLC

Email: abhishek.chaudhary@diverselynx.com

Interested in this position?
Apply via Email

Recruiter Notice:
To remove this job posting, please send an email from
abhishek.chaudhary@diverselynx.com with the subject:

DELETE_JOB_ID_2507

to delete@join-this.com.