Remote | Cybersecurity & IT GRC Evaluation Consultant — $70–$110/hour

About The Position

Requirements

• 5+ years of relevant professional experience in cybersecurity, IT GRC, security risk management, compliance, control testing, IT audit, security governance, or related work
• Native or professional fluency in English
• High proficiency in Microsoft Office and Google Workspace
• Strong experience with Google Slides, PowerPoint, Excel, Google Sheets, Word, and Google Docs
• Ability to evaluate documents, spreadsheets, and slide decks with strong attention to detail
• Excellent written communication skills and ability to provide structured feedback
• Ability to work independently in a remote, project-based environment

Nice To Haves

• Master's degree or higher in a relevant field
• Certifications or training such as CISSP, CISA, CISM, CRISC, Security+, ISO 27001 Lead Auditor, ISO 27001 Lead Implementer, or comparable cybersecurity and GRC credentials
• Experience with NIST CSF, NIST 800-53, ISO 27001, SOC 2, CIS Controls, PCI DSS, HIPAA Security Rule, SOX ITGC, or similar frameworks
• Experience creating or reviewing risk registers, control matrices, audit evidence, security policies, compliance reports, vendor security reviews, or executive security presentations
• Strong ability to evaluate both cybersecurity substance and visual/presentation quality

Responsibilities

• Evaluate AI-generated documents, spreadsheets, and slide decks involving cybersecurity, IT governance, risk management, compliance, control testing, audit support, and security policy materials
• Review cybersecurity materials for accuracy, completeness, rigor, clarity, and practical relevance
• Assess artifacts involving risk registers, control matrices, security assessments, policy summaries, compliance reports, and executive-facing security materials
• Identify inaccurate assumptions, unclear control logic, incomplete risk analysis, weak recommendations, or poor linkage between evidence and conclusions
• Review materials involving cybersecurity frameworks, control requirements, compliance mappings, third-party risk, access controls, vulnerability management, incident response planning, and data protection
• Assess whether recommendations are realistic, measurable, and aligned with the stated security context
• Evaluate control descriptions, risk treatment plans, audit support materials, security dashboards, and compliance summaries for rigor and usability
• Provide clear written feedback that improves cybersecurity and IT GRC artifact quality
• Review spreadsheets for structure, logic, calculations, formatting, usability, and consistency
• Assess slide decks for organization, visual clarity, executive readability, and presentation quality
• Identify factual, aesthetic, formatting, and presentation errors across Microsoft Office and Google Workspace files
• Apply consistent review standards across documents, spreadsheets, and slide decks

Benefits

• Remote structure with competitive hourly compensation
• Independent contractor role
• Fully remote with flexible scheduling
• Competitive rates between $70–$110 per hour depending on expertise and project scope
• Weekly payments via Stripe or Wise