Are you a seasoned security leader who thrives on variety and high-impact strategic work? Join an elite boutique consultancy providing top-tier fractional executive services to a diverse portfolio of high-growth and enterprise organizations.
We are seeking a Fractional GRC/Cybersecurity Consultant to steer complex security and compliance programs for clients.
The Role
In this flexible, high-visibility position, you will act as a trusted advisor to C-Suite executives and Board committees. Your mission is to mature security postures and navigate rigorous regulatory landscapes.
Key Responsibilities
• Strategic GRC Leadership: Lead program development, risk register maturation, and NIST CSF gap analyses.
• Compliance & Audit Readiness: Drive SOX, ITGC, and SOC 2 readiness initiatives, and prepare for IPOs.
• M&A & Risk: Execute IT security due diligence for acquisitions and conduct incident response tabletop exercises.
• Fractional Leadership: Serve as a vCISO or security lead, translating technical risk into business-level strategy for PE operating partners.
• Client Advocacy: Represent our firm’s brand in executive-level discussions and vendor risk management.
Candidate Profile
• Experience: 12+ years in Cybersecurity/GRC, with at least 5 years in a Director or Senior Management capacity.
• Technical Mastery: Deep expertise in NIST CSF, SOC 2, and SOX ITGC frameworks.
• Credentials: At least one of the following: medical device, pharmaceutical, or regulated manufacturing compliance experience.
• Communication: Exceptional "boardroom presence" with the ability to influence C-level stakeholders.
Position Details
• Engagement: Fractional contract (0–30 hours/week based on project demand).
• Location: 100% Remote (Atlanta-based preferred, but open to US-wide).
• Duration: Open-ended.