GRC (Governance, Risk & Compliance) Expert

Job DescriptionJob Title: GRC (Governance, Risk & Compliance) SpecialistJob Type: ContractorLocation: RemoteJob Summary:Join our customer's team as an expert GRC Specialist and play a pivotal role in strengthening organizational compliance and risk management posture. You will leverage your expertise in regulatory frameworks and risk assessment methodologies to execute, optimize, and report on governance, risk, and compliance activities. This is a highly visible role for someone passionate about ensuring organizational resilience in regulated environments.Key Responsibilities:• Conduct comprehensive risk assessments and facilitate the identification, evaluation, and mitigation of compliance and operational risks• Map controls and processes to established regulatory and security frameworks (e.g., NIST 800-53, ISO 27001, SOX)• Lead and support internal and external compliance audits, ensuring accurate and timely documentation• Analyze, draft, and update compliance documentation and governance policies• Collaborate cross-functionally with business, IT, and legal stakeholders to address risk and compliance gaps• Produce clear, actionable audit reports and remediation recommendations• Monitor changes in regulatory requirements relevant to the organization's industry and advise on policy or process updatesRequired Skills and Qualifications:• Minimum 3 years of experience in GRC, IT Risk, Compliance, or Audit roles within regulated industries• Hands-on expertise with regulatory and security frameworks such as NIST, ISO, SOX, HIPAA, or GDPR• Strong analytical reasoning, problem-solving, and attention to detail• Exceptional written and verbal communication skills for reporting and stakeholder engagement• Proven experience in risk assessment methodologies, control design/testing, and compliance audits• Demonstrated ability to analyze policies and make actionable recommendations• Skilled in cross-functional collaboration and policy analysisPreferred Qualifications:• Relevant certifications: CISSP, CISA, CRISC, or CIA• Practical experience in financial services, healthcare, or technology sectors• In-depth expertise in one or more domains: Cybersecurity, AML/SOX, HIPAA/GDPR compliance, or Third-Party Risk ManagementAs a key member of the customer's team, your contributions will directly support the organization's mission to maintain the highest standards of governance, risk, and compliance. If you are detail-oriented, proactive, and thrive in dynamic, regulated environments, we encourage you to apply and help drive excellence in GRC practices.