Senior Risk Assessment & Compliance Consultant
100% Remote
USC / GC
This is a senior, hands-on role focused on leading
enterprise-level cybersecurity risk assessments, compliance evaluations, and
remediation planning across regulated public-sector, law enforcement, and
healthcare environments. The ideal candidate will bring 10+ years of
experience in cybersecurity risk management and regulatory compliance,
with demonstrated depth in NIST SP 800-171, HIPAA, and CJIS.
What We’re Looking For (High Priority)
- Proven leadership of risk assessments and gap
analyses against NIST 800-171, HIPAA Security & Privacy Rules,
and FBI CJIS Security Policy
- Strong experience developing SSPs, POA&Ms, HIPAA
Risk Analyses, and audit-ready documentation
- Ability to advise and brief CIOs, CISOs, Compliance
Officers, and legal stakeholders
- Background supporting federal, state, local
government, law enforcement, or healthcare organizations
Experience & Credentials
- Minimum 10 years in cybersecurity risk, compliance, and control
assessments
- Strong understanding of RMF, security controls, data
protection, and incident response
- Required certifications: CISSP, CISA, CISM, and/or
CRISC (multiple preferred)
- Preferred: HCISPP, CCSP, NIST RMF/800-171 training,
CJIS background, PMP
- Ability to pass CJIS background checks; public
trust or higher clearance preferred
Key Deliverables
- Enterprise Risk Assessment Reports
- NIST 800-171 Gap Analysis & SSP
- HIPAA Risk Analysis documentation
- CJIS compliance assessment reports
- POA&Ms and remediation roadmaps
Thanks, and looking forward to collaborating on this hire.
Email: sury...@rconsultinginc.com