top of page

Lead Governance, Risk & Compliance Consultant

We appreciate your interest in Polito and are excited to learn about you and what you can bring to our team. If you believe you'd be an invaluable addition to our diverse team, we encourage you to contact us.

Lead Governance, Risk & Compliance Consultant

To apply, please email your resume and cover letter to:

Polito, Inc. is... a well-established and growing cybersecurity consulting firm based in the greater Washington, D.C. metro area. Our team’s diverse skill set allows us to deliver on a wide variety of cybersecurity services, from risk assessments, security policy creation and reviews to vCISO services. Join our team of experts and advance your career!

We’re looking for… a Lead Governance Risk Compliance (GRC) consultant that can work independently but still maintains a team focus. Our ideal candidate for this position is passionate about information security, advancing their skill sets and communicates professionally with clients, both verbally and through written communication. Our consultants are known to think outside the box and to treat each client with the same courtesy and professionalism. Our team is consistently growing and career advancement opportunities, including training, are available.

Job Description

The Lead GRC consultant is responsible for performing and delivering risk and compliance assessments and in some cases leading a project team. A typical engagement would include initial information gathering through document requests and interviews of clients, an analysis, documenting the findings in a report and a final outbrief with the client.


  • 4+ years minimum of risk and compliance assessment experience

  • Ability to deliver a broad range of GRC services e.g. creation of security policies

  • Demonstrated experience in planning, executing and managing risk/compliance assessment engagements

  • Experience with at least three of the following frameworks: HIPAA, PCI-DSS, NIST CSF, FISMA, CMMI

  • Ability to join in on client-facing engagements and work on projects through to completion, dealing with client issues

  • Experience in providing training and/or mentoring to other team members a plus

  • Ability to take responsibility for improving areas of the methodologies and processes used by our team

  • Carry out Polito internal work, as required, to continue to improve Polito’s internal security posture

  • At least one industry specific accreditations such as CISSP or CRISC


  • Experience with conducting Incident Response tabletop exercises

Equal Employment Opportunity Statement
Polito, Inc. is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion, or sexual orientation.

All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.

Polito, Inc. is committed to providing veteran employment opportunities to our service men and women.

Anchor 1
About Us

We're a group of industry recognized cyber security experts who are always looking for interesting cyber and information security projects to work on. We believe in going the extra mile to satisfy our clients and staying on the bleeding edge of the cyber front.

bottom of page