RISCPoint Advisory Group Consultant - Cybersecurity Compliance Remote · Full time

Apply for Consultant - Cybersecurity Compliance

RISCPoint was founded with the vision to seamlessly integrate with your team, utilizing only high-performing professionals with deep technical and operational experience to fulfill your security and compliance needs. Our diverse team has served companies ranging from Fortune 10 to pre-series A start-ups. Our first priority is to understand your specific needs, only recommending services we are certain will deliver a meaningful return on investment. We provide business-focused risk, technology and cybersecurity solutions, specifically tailored to your organization.

About the Company

RISCPoint is a cybersecurity consulting firm specializing in helping organizations navigate complex compliance frameworks such as FedRAMP, SOC 2, ISO 27001, and HITRUST. Our team is made up of former assessors, auditors, and industry experts who deliver tailored, high-quality engagements designed to meet each client’s unique needs. We take a collaborative, “white-glove” approach that prioritizes both technical excellence and client experience. With rapid growth and a reputation for trusted expertise, RISCPoint partners with leading cloud service providers, technology companies, and enterprises across industries. Join us and be part of a team that is shaping the future of cybersecurity compliance.

Key Responsibilities

• Support SOC 2 audit and readiness engagements utilizing GRC and compliance automation platforms such as Vanta and Drata.

• Assist with evidence collection, compliance tracking, auditor request coordination, and documentation management activities within GRC platforms.

• Support cybersecurity compliance and assurance engagements across frameworks including SOC 1, SOC 2, ISO 27001, HITRUST, HIPAA, and related industry standards.

• Participate in client meetings, workshops, interviews, and discovery sessions with technical and business stakeholders.

• Assist with gap assessments, readiness assessments, and control evaluations against applicable framework requirements and industry-leading practices.

• Develop and maintain security and compliance documentation including policies, procedures, risk assessments, system descriptions, and supporting evidence artifacts.

• Assist in identifying control gaps, compliance risks, and remediation opportunities within client environments.

• Coordinate project tasks, track open items, and support engagement execution activities alongside senior team members and project leadership.

• Support audit and assessment activities by assisting with evidence gathering, walkthrough preparation, and auditor coordination activities.

• Review client environments and operational processes to support security and compliance maturity assessments.

• Contribute to the development and enhancement of internal templates, methodologies, and service delivery processes.

• Maintain current knowledge of cybersecurity, compliance, privacy, and assurance trends, standards, and emerging regulatory requirements.

Qualifications

• Bachelor’s or Master’s degree in Information Security, Computer Science, or a related field or combination of relevant education and equivalent work experience.

Experience

• 0–2 years of experience in cybersecurity, compliance, IT audit, risk advisory, information technology, or a related field.

• Internship, academic, or professional experience supporting cybersecurity, compliance, or audit-related activities is preferred.

• Familiarity with cybersecurity and compliance frameworks such as SOC 2, ISO 27001, HITRUST, HIPAA, or NIST CSF is preferred.

• Exposure to GRC and compliance automation platforms such as Vanta or Drata is preferred.

• Basic understanding of information security concepts including access management, vulnerability management, logging and monitoring, incident response, and security policies.

• Strong written and verbal communication skills with the ability to interact professionally with both technical and non-technical stakeholders.

• Strong organizational skills and attention to detail with the ability to manage multiple tasks and priorities simultaneously.

• Ability to work collaboratively within a fast-paced consulting environment while demonstrating initiative and a willingness to learn.

• Familiarity with cloud platforms such as AWS, Azure, or Google Cloud Platform is preferred.

Skills

• Basic understanding of cybersecurity and compliance frameworks including SOC 1, SOC 2, ISO 27001, HITRUST, and HIPAA.

• Strong written and verbal communication skills.

• Strong organizational, analytical, and problem-solving skills.

• Ability to learn quickly and adapt within a fast-paced consulting environment.

• Ability to work effectively within collaborative, client-facing teams.

Compensation & Benefits

• Generous Salary + Bonus

• Company Paid Health Insurance

• Company Paid Dental Insurance

• Company Paid Vision Insurance

• Company Paid Life Insurance

• 401k with 3% Company Contribution (Traditional & Roth Options)

• Generous Vacation Policy