We are seeking a hands-on Security Compliance Consultant (GRC) to support ongoing audit and compliance initiatives.
This role is execution-focused and will work closely with internal teams and auditors to gather evidence, maintain documentation, and ensure audit readiness across multiple frameworks. This is not a strategy or advisory role we are looking for someone who can do the work and drive deliverables to completion.
Key Responsibilities
- Collect, organize, and validate evidence for SOC 2 audits
- Work directly with internal auditors to respond to requests and close gaps
- Maintain and update compliance documentation for:
- Cisco Cloud Control
- AI Canvas
- AI Defense
- Support compliance efforts across multiple frameworks, including:
- SOC 2
- ISO (e.g., ISO 27001)
- Germany C5
- Gather and track compliance data for Security Readiness Plans
- Map controls and reuse evidence across frameworks where applicable
- Partner with engineering, product, and security teams to obtain required artifacts
- Track progress and ensure timely completion of audit deliverables
Required Experience
- 8+ years in GRC / Security Compliance
- Proven experience supporting SOC 2 audits (evidence collection + auditor interaction)
- Hands-on experience with ISO 27001 or similar frameworks