GRC Engagement Leader
GRC Engagement Leader
Location: Remote (US) Level: Mid-to-Senior Career
About Zaviant
Zaviant, headquartered in Philadelphia, is a boutique consulting firm specializing in Data Security, Privacy, and Third-Party Risk Management. We help organizations build sustainable compliance and security programs that align with regulatory frameworks, mitigate risk, and drive operational resilience. Zaviant has been recognized among the top 50 companies on the prestigious 2025 Inc. Regionals Northeast list.
Position Overview
We are seeking a strategic, client-focused GRC Engagement Leader to join our growing Professional Services team. This is a high-impact role responsible for leading governance, risk, and compliance (GRC) consulting engagements from scoping through to successful delivery.
The ideal candidate brings proven consulting experience, deep expertise in GRC frameworks and technologies, and a collaborative, client-first mindset. This individual will work closely with Zaviant’s leadership, consultants, and client stakeholders to shape solutions, lead engagements, and help build the future of our GRC service line.
Key Responsibilities
Lead GRC client engagements—covering risk assessments, security program development, policy creation, control design, and implementation projects.
Serve as the primary point of contact for clients—building relationships, managing scope and timelines, and ensuring satisfaction.
Provide subject matter expertise across frameworks such as NIST CSF, ISO 27001, SOC 2, HIPAA, GLBA, and state/federal privacy laws.
Oversee and guide junior consultants on deliverables including risk registers, audit responses, technical control documentation, and remediation planning.
Drive the design and implementation of GRC platforms including OneTrust, ZenGRC, and ServiceNow.
Conduct maturity assessments and help clients operationalize risk and compliance programs aligned to business needs.
Collaborate with cross-functional Zaviant teams on project delivery, knowledge sharing, and client growth strategies.
Contribute to team development through mentoring, coaching, and creating an inclusive, high-performance culture.
Support thought leadership and business development by contributing to proposals, workshops, and strategic initiatives.
Must-Have Qualifications
Minimum 5–7 years of direct consulting experience in cybersecurity, GRC, audit, or privacy-related roles.
Active CISA and CISSP certifications
Deep understanding of GRC frameworks and regulations such as NIST, ISO 27001, SOC 2, GDPR, CPRA, HIPAA, and GLBA.
Demonstrated success managing client relationships and delivering complex, multi-stakeholder consulting engagements.
Hands-on experience with GRC platforms like OneTrust, ZenGRC, ServiceNow, IBM Open Pages, or comparable systems.
Strong communication skills—able to distill complex issues and communicate clearly with both technical and non-technical audiences.
Ability to manage multiple projects in a fast-paced environment with shifting priorities.
Preferred Qualifications
Additional certifications (e.g., CIPP/US, CRISC, ISO 27001 Lead Implementer, PMP).
Experience in vendor risk management, incident response planning, or security operations support.
Background in a boutique or mid-size consulting environment is a strong plus.
What You Bring to the Table
A problem-solver who can think strategically and execute tactically.
A leader who values collaboration, mentorship, and fostering a supportive team culture.
A builder—eager to shape growing service offerings and contribute to Zaviant’s strategic direction.
A self-starter with a strong ownership mentality and a passion for client success.
Compensation & Benefits
Compensation
Competitive base salary
Performance-based bonuses tied to individual and team contributions
Benefits
Medical, Dental, and Vision insurance
401(k) with employer match
Generous Paid Time Off and Paid Holidays
Career development support, certification funding, and mentorship
Opportunities for rapid growth and leadership
Why Join Zaviant?
At Zaviant, we’re committed to building a collegiate, high-trust culture that supports growth, values ideas, and delivers real impact. You’ll be empowered to lead with autonomy, collaborate cross-functionally, and help shape the future of GRC delivery for innovative organizations across the U.S.
About the job
Apply for this position
GRC Engagement Leader
GRC Engagement Leader
Location: Remote (US) Level: Mid-to-Senior Career
About Zaviant
Zaviant, headquartered in Philadelphia, is a boutique consulting firm specializing in Data Security, Privacy, and Third-Party Risk Management. We help organizations build sustainable compliance and security programs that align with regulatory frameworks, mitigate risk, and drive operational resilience. Zaviant has been recognized among the top 50 companies on the prestigious 2025 Inc. Regionals Northeast list.
Position Overview
We are seeking a strategic, client-focused GRC Engagement Leader to join our growing Professional Services team. This is a high-impact role responsible for leading governance, risk, and compliance (GRC) consulting engagements from scoping through to successful delivery.
The ideal candidate brings proven consulting experience, deep expertise in GRC frameworks and technologies, and a collaborative, client-first mindset. This individual will work closely with Zaviant’s leadership, consultants, and client stakeholders to shape solutions, lead engagements, and help build the future of our GRC service line.
Key Responsibilities
Lead GRC client engagements—covering risk assessments, security program development, policy creation, control design, and implementation projects.
Serve as the primary point of contact for clients—building relationships, managing scope and timelines, and ensuring satisfaction.
Provide subject matter expertise across frameworks such as NIST CSF, ISO 27001, SOC 2, HIPAA, GLBA, and state/federal privacy laws.
Oversee and guide junior consultants on deliverables including risk registers, audit responses, technical control documentation, and remediation planning.
Drive the design and implementation of GRC platforms including OneTrust, ZenGRC, and ServiceNow.
Conduct maturity assessments and help clients operationalize risk and compliance programs aligned to business needs.
Collaborate with cross-functional Zaviant teams on project delivery, knowledge sharing, and client growth strategies.
Contribute to team development through mentoring, coaching, and creating an inclusive, high-performance culture.
Support thought leadership and business development by contributing to proposals, workshops, and strategic initiatives.
Must-Have Qualifications
Minimum 5–7 years of direct consulting experience in cybersecurity, GRC, audit, or privacy-related roles.
Active CISA and CISSP certifications
Deep understanding of GRC frameworks and regulations such as NIST, ISO 27001, SOC 2, GDPR, CPRA, HIPAA, and GLBA.
Demonstrated success managing client relationships and delivering complex, multi-stakeholder consulting engagements.
Hands-on experience with GRC platforms like OneTrust, ZenGRC, ServiceNow, IBM Open Pages, or comparable systems.
Strong communication skills—able to distill complex issues and communicate clearly with both technical and non-technical audiences.
Ability to manage multiple projects in a fast-paced environment with shifting priorities.
Preferred Qualifications
Additional certifications (e.g., CIPP/US, CRISC, ISO 27001 Lead Implementer, PMP).
Experience in vendor risk management, incident response planning, or security operations support.
Background in a boutique or mid-size consulting environment is a strong plus.
What You Bring to the Table
A problem-solver who can think strategically and execute tactically.
A leader who values collaboration, mentorship, and fostering a supportive team culture.
A builder—eager to shape growing service offerings and contribute to Zaviant’s strategic direction.
A self-starter with a strong ownership mentality and a passion for client success.
Compensation & Benefits
Compensation
Competitive base salary
Performance-based bonuses tied to individual and team contributions
Benefits
Medical, Dental, and Vision insurance
401(k) with employer match
Generous Paid Time Off and Paid Holidays
Career development support, certification funding, and mentorship
Opportunities for rapid growth and leadership
Why Join Zaviant?
At Zaviant, we’re committed to building a collegiate, high-trust culture that supports growth, values ideas, and delivers real impact. You’ll be empowered to lead with autonomy, collaborate cross-functionally, and help shape the future of GRC delivery for innovative organizations across the U.S.