Security Compliance Consultant (GRC)
Role details
Job location
Tech stack
Job description
We are seeking a hands-on Security Compliance Consultant (GRC) to support ongoing audit and compliance initiatives.
This role is execution-focused and will work closely with internal teams and auditors to gather evidence, maintain documentation, and ensure audit readiness across multiple frameworks. This is not a strategy or advisory role we are looking for someone who can do the work and drive deliverables to completion., * Collect, organize, and validate evidence for SOC 2 audits
-
Work directly with internal auditors to respond to requests and close gaps
-
Maintain and update compliance documentation for:
-
Cisco Cloud Control
-
AI Canvas
-
AI Defense
-
Support compliance efforts across multiple frameworks, including:
-
SOC 2
-
ISO (e.g., ISO 27001)
-
Germany C5
-
Gather and track compliance data for Security Readiness Plans
-
Map controls and reuse evidence across frameworks where applicable
-
Partner with engineering, product, and security teams to obtain required artifacts
-
Track progress and ensure timely completion of audit deliverables
Requirements
- 8+ years in GRC / Security Compliance
- Proven experience supporting SOC 2 audits (evidence collection + auditor interaction)
- Hands-on experience with ISO 27001 or similar frameworks