Security, Risk and Compliance Consultant

Security, Risk and Compliance Consultant to deliver data-driven security and regulatory programs for clients. Responsibilities span compliance, information security, risk management, and data privacy; expected activities include regulatory mapping/implementation, audit/remediation management, readiness for new laws and regulations, risk reporting, and development of roadmaps to mature risk, compliance, and information security programs. Design and enablement of cyber controls, change management for regulatory adoption, and coordination across technical, business, compliance, risk, and audit teams. Knowledge of industry standards and regulations (e.g., GDPR, CCPA/CPRA, HIPAA, PCI) and frameworks (NIST, ISO, COSO) is required, along with familiarity with security controls and domains such as ERP, IAM, cloud, and business continuity. Certifications such as CISSP/CISM or related credentials are preferred.