2

Cyber Security Grc Remote Jobs (NOW HIRING)

Cybersecurity Architect

Tampa, FL · On-site +1

$130K - $150K/yr

Channelview, TX; Remote Pay Range: $130,000 - $150,000 annual salary We are not able to offer visa ... and Compliance (GRC), and vulnerability management. This also includes evaluating Endpoint ...

IT & Cyber Security Consultant

Washington, DC · On-site +1

$156K - $234K/yr

Location: Remote - This position may be performed remotely in states where the company is ... You will enable the SOC by improving detection and orchestration capabilities and enable GRC by ...

IT & Cyber Security Consultant

Washington, DC · On-site +1

$156K - $234K/yr

Location: Remote - This position may be performed remotely in states where the company is ... You will enable the SOC by improving detection and orchestration capabilities and enable GRC by ...

IT & Cyber Security Consultant

Washington, DC · On-site +1

$156K - $234K/yr

Location: Remote - This position may be performed remotely in states where the company is ... You will enable the SOC by improving detection and orchestration capabilities and enable GRC by ...

IT & Cyber Security Consultant

Washington, DC · On-site +1

$156K - $234K/yr

Location: Remote - This position may be performed remotely in states where the company is ... You will enable the SOC by improving detection and orchestration capabilities and enable GRC by ...

IT & Cyber Security Consultant

Washington, DC · On-site +1

$156K - $234K/yr

Location: Remote - This position may be performed remotely in states where the company is ... You will enable the SOC by improving detection and orchestration capabilities and enable GRC by ...

Account Executive

PA · On-site +1

$66K/mo

... the remote option.) Job Summary About Comcast Make your mark at Comcast -- a Fortune 30 global ... Foundational knowledge within cybersecurity (preferably GRC) * A true hunter mentality -- you're ...

Senior Analyst, Cyber GRC

Westminster, CO · On-site +1

$110K - $157K/yr

The Senior Analyst, Cybersecurity Governance, Risk, and Compliance (GRC) is responsible for ... The preferred location for this role is our Westminster, CO campus; but we will consider a remote ...

next page

Showing results 1-20

Cyber Security Grc Remote information

See salary details

$40.5K

$122.9K

$180K

How much do cyber security grc remote jobs pay per year?

As of Jul 2, 2026, the average yearly pay for cyber security grc remote in the United States is $122,890.00, according to ZipRecruiter salary data. Most workers in this role earn between $102,000.00 and $142,000.00 per year, depending on experience, location, and employer.

What is a Cyber Security GRC remote job?

A Cyber Security GRC (Governance, Risk, and Compliance) remote job involves managing an organization's cybersecurity policies, risk assessments, and compliance requirements from a remote location. Professionals in this role assess threats, develop security frameworks, ensure compliance with industry regulations, and help implement best practices to protect data and systems. Working remotely, they use digital tools to analyze risks, document controls, and communicate with stakeholders to maintain the organization's security posture.

What are the key skills and qualifications needed to thrive as a Cyber Security GRC (Governance, Risk, and Compliance) professional in a remote role, and why are they important?

To thrive as a Cyber Security GRC professional remotely, you need a solid understanding of risk management, security frameworks (such as NIST, ISO 27001), compliance regulations, and typically a degree in information security or a related field. Familiarity with GRC platforms (e.g., Archer, ServiceNow), risk assessment tools, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, proactive communication, and the ability to work independently are essential soft skills for success in a remote environment. These competencies are vital for effectively identifying risks, ensuring regulatory compliance, and collaborating with cross-functional teams without direct in-person supervision.

How does a Cyber Security GRC professional typically collaborate with other departments in a remote work setting?

Cyber Security GRC professionals often work closely with departments such as IT, legal, compliance, and risk management to ensure that security policies and regulatory requirements are consistently met. In a remote setting, collaboration relies heavily on digital communication tools like video conferencing, project management software, and secure document-sharing platforms. Regular virtual meetings and clear documentation help maintain alignment across teams, while building strong relationships remotely is essential for fostering trust and effective information flow. Being proactive in communication and staying organized are key to overcoming the challenges of remote collaboration.

What is the difference between Cyber Security Grc Remote vs Cyber Security Analyst?

AspectCyber Security Grc RemoteCyber Security Analyst
CertificationsISO 27001, CISSP, CISACISSP, CompTIA Security+
Work EnvironmentRemote, policy-focusedOffice or remote, technical focus
Employer & IndustryOrganizations with compliance needsIT firms, security teams

Cyber Security Grc Remote roles primarily focus on governance, risk management, and compliance, often working remotely to develop policies and ensure regulatory adherence. Cyber Security Analysts concentrate on technical security measures, monitoring threats, and incident response. While both roles require security certifications, GRC roles emphasize policy and compliance, whereas Analysts focus on technical security operations.

More about Cyber Security Grc Remote jobs
What cities are hiring for Cyber Security Grc Remote jobs? Cities with the most Cyber Security Grc Remote job openings:
What are the most commonly searched types of Cyber Security Grc jobs? The most popular types of Cyber Security Grc jobs are:
What states have the most Cyber Security Grc Remote jobs? States with the most job openings for Cyber Security Grc Remote jobs include:
Infographic showing various Cyber Security Grc Remote job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 76% Physical, 7% Hybrid, and 17% Remote job distribution, with an average salary of $122,890 per year, or $59.1 per hour.

Senior Risk Advisory GRC Consultant - Remote (USA)

Echelon Risk + Cyber

Remote

Full-time

Medical, Dental, Vision, Life, Retirement

Posted 27 days ago


Job description

About us: At Echelon Risk + Cyber, we believe in defending basic human rights to security and privacy. We seek a highly skilled and experienced Senior Risk Advisory GRC Consultant to join our dynamic team at Echelon Risk + Cyber, a leading cybersecurity consulting firm. Our next team member will be ready to roll up their sleeves and identify opportunities for our clients and for Echelon internally with unquestioned integrity. This team member will be passionate about cybersecurity and ready to use their knowledge to be an Entrepreneurial Problem Solver and work alongside their Echelon team members to build creative solutions.
As a Senior Risk Advisory GRC Consultant, you will lead client engagements focused on information security, compliance, and risk management across frameworks such as SOC 2, ISO 27001, PCI DSS, HITRUST, HIPAA, and CMMC. In this role, you will serve as a trusted advisor to clients, helping them assess security risks, strengthen control environments, achieve compliance objectives, and improve overall cybersecurity maturity. You will manage multiple engagements, provide strategic guidance, mentor junior team members, and deliver high-quality consulting services while building strong client relationships and contributing to the growth of the practice.
At Echelon, you will have the opportunity to engage with clients, business partners, and systems that are at the cutting edge of technology. We allow our employees to build from the ground up and make an impact across the organization. We look for driven and proactive people who are eager to contribute to a distinct and thriving Cybersecurity services organization that can adapt to a rapid and changing environment.
This is a remote position from anywhere in the USA.
What You Will Do:
  • Lead and execute SOC 2 Type I/II readiness assessments and attestation engagements, including scoping, control evaluation, gap identification, remediation planning, and client advisory services
  • Lead and develop ISO 27001 gap assessments, internal audits, and certification readiness engagements for clients across a range of industries and organizational sizes
  • Lead the testing and evaluation of IT General Controls (ITGCs) across client environments, documenting findings and delivering actionable remediation recommendations
  • Lead and develop PCI DSS, HITRUST, HIPAA, and CMMC Level 2 compliance assessments, providing strategic guidance and oversight throughout the engagement lifecycle
  • Review and oversee audit workpapers, evidence requests, control narratives, and client-facing deliverables to ensure consistency, quality, and adherence to professional standards
  • Partner directly with clients to identify and assess information security risks, develop security policies and procedures, and provide practical remediation strategies aligned with business objectives
  • Lead and develop incident response planning initiatives, tabletop exercises, and business continuity engagements as part of Echelon's broader cybersecurity advisory portfolio
  • Manage and oversee multiple concurrent client engagements, balancing priorities, mitigating risks, and delivering high-quality results on schedule
  • Build and strengthen internal and client relationships through exceptional written and verbal communication, effectively translating technical findings for both technical and executive-level stakeholders
  • Drive continuous improvement by staying current with evolving compliance frameworks, audit standards, and emerging security threats, enhancing both client services and internal methodologies
  • Demonstrate thought leadership through the creation of cybersecurity content, participation in industry events, mentorship of junior consultants, and active involvement in the cybersecurity community
  • Mentor and guide junior consultants and associates, providing technical oversight, quality reviews, and professional development support

Your Knowledge, Skills, and Abilities:
  • 5-7 years of hands-on experience in IT audit, compliance, cybersecurity consulting, or GRC advisory services, with significant experience leading SOC 2 Type I/II audits, ISO 27001 assessments, and related attestation engagements
  • Deep understanding of IT General Controls (ITGCs), Trust Services Criteria, and audit standards such as SSAE 18 and ISAE 3402, with practical experience leading incident response planning and business continuity initiatives
  • Proven ability to lead risk assessments, compliance reviews, readiness evaluations, and remediation programs across frameworks, including SOC 2, ISO 27001, PCI DSS, HITRUST, HIPAA, and CMMC
  • Strong analytical and problem-solving skills, with the ability to assess complex risk scenarios and provide strategic, business-aligned recommendations
  • Experience leveraging leading GRC platforms and technologies to drive compliance, risk management, and governance initiatives
  • Excellent communication, presentation, and stakeholder management skills, with the ability to engage technical teams, executive leadership, and client stakeholders
  • Strong project and engagement management skills, including leading multiple client engagements simultaneously while maintaining quality, budget, and client satisfaction objectives
  • Demonstrated experience mentoring junior team members and contributing to the development of internal methodologies, templates, and best practices
  • Prior experience at a Big 4 firm, mid-tier CPA/advisory firm, cybersecurity consulting firm, or boutique IT audit/attestation practice is strongly preferred
  • Applicants must have authorization to work in the United States without current or future visa sponsorship

Preferred Qualifications:
  • Certified in one or more of the following: CISA, CIA, CPA, CISSP, and/or ISO 27001 Lead Auditor
  • Extensive experience leading the incident response lifecycle, including preparedness, response, recovery, and lessons learned activities
  • Experience developing project plans, engagement roadmaps, staffing models, and delivery timelines
  • Proven track record leading high-volume SOC 2 and ISO 27001 engagements in a client-facing consulting, advisory, or attestation environment
  • Experience with government and regulated-industry compliance frameworks, including FedRAMP, CMMC, NIST 800-53, and related security standards
  • Experience managing client relationships, expanding advisory opportunities, and contributing to business development initiatives

Why Echelon?
We are committed to creating an inclusive environment for our team with unquestioned integrity. If you have a special need that requires accommodation, please let your recruiter know. One of our core values is "People with Personality," and we want to allow you the space to bring your full self to work.
We Currently Offer The Following Benefits:
  • Access to medical, dental, and vision insurance through Cigna, with the majority of the employee cost covered by the employer
  • Employer funding to HSA accounts and FSA access
  • Access to a 401(k) through Vanguard with a guaranteed employer contribution
  • Flexible vacation policy that allows you to manage your schedule and rest and recharge when you need to.
  • 11 holidays with flexibility based on what is important for you and those you love
  • Employer-paid short-term and long-term disability, employer-paid life insurance, and access to additional life insurance, hospital coverage, accidental coverage, discounted mental health support, and more
  • Support for individual development through certifications, continued learning, conferences, and more

We value a diverse workforce and a culture of inclusivity and belonging. All employment decisions shall be made without regard to age, race, creed, color, religion, gender, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status, or any other basis as protected by federal, state, or local law. Echelon Risk + Cyber is an Equal Opportunity Employer.