GRC Consultant for ISO 27001 Policy Development and Compliance

Remote Full-time
We are a growing organization seeking an experienced Governance, Risk, and Compliance (GRC) consultant to develop ISO 27001-compliant policies and support our compliance journey. This is a short-term project focused on creating tailored security policies and providing guidance to align our operations with ISO 27001 standards. Project Scope: ●Develop a set of ISO 27001-compliant policies, including but not limited to: ○Information Security Policy ○Access Control Policy ○Incident Response Plan ○Risk Management Policy ●Conduct a gap analysis to identify areas of non-compliance with ISO 27001. ●Provide a concise report with actionable recommendations for achieving compliance. ●Offer brief consultation (via video calls or written communication) to clarify policy implementation steps. Deliverables: ●A comprehensive set of ISO 27001 policies (in editable Word or PDF format). ●Gap analysis report highlighting compliance gaps and prioritized remediation steps. ●One or two 30-minute consultation sessions to discuss policy implementation and answer questions. Project Duration: ●3-4 weeks from project start. Budget: ●Fixed price: $100 USD. Requirements: ●Proven experience in GRC and ISO 27001 implementation (please provide examples of past ISO 27001 projects or deliverables). ●Familiarity with ISO 27001 Annex A controls and policy development. ●Strong understanding of risk assessments and compliance frameworks (e.g., NIST, PCI-DSS). ●Excellent communication skills and ability to deliver clear, professional documentation. ●Preferred certifications: ISO 27001 Lead Auditor, CISM, CISSP, or equivalent. Nice-to-Have: ●Experience working with small to medium-sized businesses. ●Knowledge of additional compliance frameworks (e.g., GDPR, SOC 2). How to Apply: Please submit a brief proposal outlining: ●Your experience with ISO 27001 policy development. ●A sample or description of similar work (anonymized if necessary). ●Your approach to completing this project within the 3-4 week timeline. ●Confirmation of availability for consultation sessions. We look forward to collaborating with a skilled GRC professional to strengthen our security posture and achieve ISO 27001 compliance. Apply now to discuss how you can help us succeed! Apply tot his job Apply tot his job
Apply Now

Similar Opportunities

[Remote] Elite Travel Portfolio Manager (remote)

Remote

Senior Portfolio Manager- Trust

Remote

Remote - IT Portfolio Manager Hybrid 2 days a week (Alexandria, VA)

Remote

Associate Portfolio Manager (Bilingual & Remote)

Remote

Senior Portfolio Manager (Strategic Enterprise Initiatives) - Hybrid

Remote

Senior Portfolio Manager, Hip (Remote)

Remote

[Remote] 1394# RWE Portfolio/Project Manager Consultant-Remote

Remote

Project Director, Remote Job

Remote

Senior Customer Project Manager - Pipeline and Portfolio Management (Remote)

Remote

Portfolio Manager - Remote (1x Week In Office) in Draper, UT

Remote

Tableau/Alteryx Developer & Admin

Remote

Experienced Data Entry Specialist – Remote Work Opportunity for Entry-Level Candidates with No Prior Experience Required at blithequark

Remote

[Remote] Sales Development Representative

Remote

Experienced Part-Time Remote Data Entry Clerk - Flexible Work from Home Opportunity with Blithequark for High School and College Students

Remote

**Flexible Data Entry Coordinator (Hiring Immediately) at blithequark**

Remote

Remote Entry-Level Project Engineer – Pipeline Flow Optimization & Drag Reduction Specialist (Work‑From‑Home)

Remote

Implementation Consultant (SaaS)

Remote

Experienced Data Entry Specialist for Alternate Investments - Remote Opportunity at blithequark

Remote

Lead Software Architect - Remote or Operate from our NY Office

Remote

Molecular Technologist I-IV, 3rd Shift - Join Tempus in Revolutionizing Cancer Treatment through Cutting-Edge Genomics and Molecular Diagnostics

Remote
← Back to Home