Security Governance, Risk, and Compliance (Medellín)

The Security GRC Consultant is responsible for supporting and operating client organizations’ security governance, risk, and compliance program. This role performs GRC execution while also providing risk-based analysis, reporting, and advisory support. The consultant will partner with client organizations’ security leadership and stakeholders to identify, assess, manage, and report on security risk in a regulated healthcare and public company environment.

The role may support one or more client environments as part of a managed services engagement.

The role spans proactive and reactive GRC activities, including third-party security risk management, enterprise risk measurement, incident governance, disaster recovery and business continuity support, and ongoing policy and procedure maintenance.

Governance & Compliance

• Maintain security policies, standards, and procedures, ensuring alignment with business and regulatory requirements
• Suppor...