GRC Engagement Leader

GRC Engagement Leader

Location: Remote (US)

Level: Mid-to-Senior Career

About Zaviant

Zaviant, headquartered in Philadelphia, is a boutique consulting firm specializing in Data Security, Privacy, and Third-Party Risk Management. We help organizations build sustainable compliance and security programs that align with regulatory frameworks, mitigate risk, and drive operational resilience. Zaviant has been recognized among the top 50 companies on the prestigious 2025 Inc. Regionals Northeast list.

Position Overview

We are seeking a strategic, client-focused GRC Engagement Leader to join our growing Professional Services team. This is a high-impact role responsible for leading governance, risk, and compliance (GRC) consulting engagements from scoping through to successful delivery.

The ideal candidate brings proven consulting experience, deep expertise in GRC frameworks and technologies, and a collaborative, client-first mindset. This individual will work closely with Zaviant’s leadership, consultants, and client stakeholders to shape solutions, lead engagements, and help build the future of our GRC service line.

Key Responsibilities

• Lead GRC client engagements—covering risk assessments, security program development, policy creation, control design, and implementation projects.
• Serve as the primary point of contact for clients—building relationships, managing scope and timelines, and ensuring satisfaction.
• Provide subject matter expertise across frameworks such as NIST CSF, ISO 27001, SOC 2, HIPAA, GLBA, and state/federal privacy laws.
• Oversee and guide junior consultants on deliverables including risk registers, audit responses, technical control documentation, and remediation planning.
• Drive the design and implementation of GRC platforms including OneTrust, ZenGRC, and ServiceNow.
• Conduct maturity assessments and help clients operationalize risk and compliance programs aligned to business needs.
• Collaborate with cross-functional Zaviant teams on project delivery, knowledge sharing, and client growth strategies.
• Contribute to team development through mentoring, coaching, and creating an inclusive, high-performance culture.
• Support thought leadership and business development by contributing to proposals, workshops, and strategic initiatives.

Must-Have Qualifications

• Minimum 5–7 years of direct consulting experience in cybersecurity, GRC, audit, or privacy-related roles.
• Active CISA and CISSP certifications
• Deep understanding of GRC frameworks and regulations such as NIST, ISO 27001, SOC 2, GDPR, CPRA, HIPAA, and GLBA.
• Demonstrated success managing client relationships and delivering complex, multi-stakeholder consulting engagements.
• Hands-on experience with GRC platforms like OneTrust, ZenGRC, ServiceNow, IBM Open Pages, or comparable systems.
• Strong communication skills—able to distill complex issues and communicate clearly with both technical and non-technical audiences.
• Ability to manage multiple projects in a fast-paced environment with shifting priorities.

Preferred Qualifications

• Additional certifications (e.g., CIPP/US, CRISC, ISO 27001 Lead Implementer, PMP).
• Experience in vendor risk management, incident response planning, or security operations support.
• Background in a boutique or mid-size consulting environment is a strong plus.

What You Bring to the Table

• A problem-solver who can think strategically and execute tactically.
• A leader who values collaboration, mentorship, and fostering a supportive team culture.
• A builder—eager to shape growing service offerings and contribute to Zaviant’s strategic direction.
• A self-starter with a strong ownership mentality and a passion for client success.

Compensation & Benefits

Compensation

• Competitive base salary
• Performance-based bonuses tied to individual and team contributions

Benefits

• Medical, Dental, and Vision insurance
• 401(k) with employer match
• Generous Paid Time Off and Paid Holidays
• Career development support, certification funding, and mentorship
• Opportunities for rapid growth and leadership

Why Join Zaviant?

At Zaviant, we’re committed to building a collegiate, high-trust culture that supports growth, values ideas, and delivers real impact. You’ll be empowered to lead with autonomy, collaborate cross-functionally, and help shape the future of GRC delivery for innovative organizations across the U.S.

Originally posted on Himalayas