Risk Advisory Consultant

Job Summary

To support the execution of Risk Advisory client engagements, the full-time remote Risk Advisory Consultant will perform SOC 2 readiness assessments, conduct ISO 27001 gap assessments, and evaluate IT General Controls while managing multiple client projects across various industries.

Key responsibilities

• Perform SOC 2 Type I/II readiness assessments and support attestation engagements, including scoping and remediation guidance
• Conduct ISO 27001 gap assessments and internal audits, providing actionable recommendations to clients
• Manage multiple concurrent client engagements, ensuring quality results and strong client relationships

Required qualifications

• 2-4 years of experience in IT audit, compliance, or GRC consulting, focusing on SOC 2 and ISO 27001
• Understanding of IT General Controls (ITGCs) and relevant audit standards
• Ability to conduct risk assessments and compliance reviews across various frameworks
• Familiarity with leading GRC tools and technologies
• Authorization to work in the United States without current or future visa sponsorship