**Hiring: Security Compliance & IT Risk Consultant** Location: #Hybrid – Raritan, NJ or New Brunswick, NJ (3 days onsite) Duration: 6 Months (CTH) Work Authorization: No Sponsorship (GC, GC EAD, USC) Send Resumes:
[email protected] We are seeking a seasoned • *Security Compliance & IT Risk Consultant** to support enterprise governance, SOX compliance, and third-party risk initiatives within a complex, regulated environment. This role sits at the intersection of • *Information Security Risk Management (ISRM), Internal Audit, and Technology** , helping ensure security, compliance, and audit readiness across critical enterprise systems. What Success Looks Like - Strong governance and compliance across new and legacy enterprise assets - SOX ITGC controls are well-defined, documented, and audit-ready - Third-party risk is effectively assessed and managed - Audit readiness is achieved with minimal findings and strong remediation tracking Responsibilities • *Security Compliance & ISRM Governance** - Support onboarding and governance of enterprise assets within asset management frameworks - Maintain compliance documentation (risk models, SDLC, application assessments) - Perform security updates and remediation for legacy systems - Partner with engineering and infrastructure teams to enforce standards • *IT SOX Compliance** - Support ITGC Risk Control Matrix (RCM) updates and control implementations - Perform control reviews across enterprise systems and interfaces - Design and document SOX-compliant processes for audit readiness • *Third-Party Risk Management** - Conduct SOC 1 / SOC 2 reviews and vendor risk assessments - Maintain and enhance SOC mappings across new and existing vendors - Provide recommendations to strengthen vendor security posture • *Audit & Remediation Support** - Prepare audit documentation and evidence for pre-implementation audits - Support remediation planning and tracking of audit findings - Collaborate with internal audit and external partners (e.g., PwC) ✅ Qualifications - 7+ years in IT Risk, Security Compliance, or IT Audit - Strong SOX ITGC and RCM experience - Experience with SDLC governance and application risk assessments - Knowledge of SOC reports and third-party risk frameworks - Strong stakeholder engagement across business and technical teams ⭐ Preferred - Experience in pharma, healthcare, or regulated industries - Exposure to large transformation or divestiture programs - Certifications: CISA, CISSP, CRISC If you’re a • *hands-on compliance and risk professional** who thrives in complex environments and enjoys driving audit readiness and governance at scale — we’d love to connect. #ITRisk #SecurityCompliance #SOX #ITAudit #ThirdPartyRisk #CyberRisk #GRC #HybridJobs #NewJerseyJobs #ContractJobs