Cybersecurity GRC Leader Atlanta, GA
ImagineX ConsultingImagineX is a Software Company whose goal is to help our clients transform their businesses by embracing emerging technologies such as Cloud, Cybersecurity, and Mobile. Through the use of our experimentation techniques and modern delivery methods, we assist our clients in driving higher quality solutions to market faster. We're looking for a Cybersecurity GRC Leader to join our growing team. Our execution success is rooted in our unique model that is supported by our industry partners and specialists. The ImagineX culture thrives on entrepreneurship, risk taking, mutual trust, teamwork, encouraging change, and letting our consultants own their way of working.
This is a hybrid (onsite & remote), role based in Atlanta, GA (Sandy Springs area). This opportunity is ideal for individuals who thrive in a dynamic, high-energy office environment, enjoy the flexibility of hybrid work, and value the opportunity to engage directly with clients through in-person collaboration and relationship-building.
As a Cybersecurity leader specialized in GRC with the ability to grow client relationships, you will drive the transformation of our client’s risk posture from reactive to proactive. This high-impact role blends strategic GRC program design with hands-on execution and client relationship management. The ideal candidate combines deep expertise in risk frameworks with strong communication and delivery leadership skills.
Duties:
- Lead the design and implementation of a scalable GRC strategy tailored to the client’s risk and compliance needs.
- Perform a comprehensive assessment of current GRC processes, tools, and capabilities, and identify opportunities for modernization.
- Define and socialize a GRC operating framework, policies, and procedures aligned to industry standards.
- Create and manage a maturity roadmap with clear KPIs, milestones, and workstreams.
- Guide the client in reducing reliance on legacy assessments and adopting continuous monitoring methodologies.
- Facilitate and lead stakeholder workshops and working sessions to drive alignment and collaboration across business units.
- Develop and deliver executive-level reports, dashboards, and board materials highlighting risk posture and compliance readiness.
- Provide ongoing delivery leadership, including progress updates, risk and issue tracking, and resolution of dependencies.
- Mentor junior team members and build trusted relationships with client stakeholders, eventually assuming responsibility for the account or portfolio.
- 10+ years' experience in Governance, Risk, and Compliance roles, with proven experience in designing and implementing enterprise-wide GRC programs.
- Must have proven consulting experience in client-facing roles, with the ability to deliver technical solutions while cultivating long-term client relationships and identifying opportunities for account growth.
- Deep understanding of risk management frameworks and standards (e.g., NIST CSF, NIST 800-53, ISO 27001, SOC 2, PCI DSS, etc.).
- Experience conducting GRC capability assessments, gap analysis, and maturity roadmaps.
- Strong background in continuous controls monitoring, risk assessments, and transitioning from point-in-time testing to real-time GRC operations.
- Proficient in GRC platforms/tools (e.g., ServiceNow GRC, Archer, MetricStream, OneTrust, LogicGate, etc.) with experience advising on tool selection and integration strategies.
- Demonstrated experience developing risk registers, control libraries, issue workflows, escalation models, and operational documentation.