GRC Consultant- Hyperproof- Remote PST Hours

Customer is seeking a Senior Governance, Risk & Compliance (GRC) Consultant with deep, hands-on expertise in the Hyperproof platform to mature, operationalize, and scale the organization s risk and compliance program.
This consultant will not only advise on governance strategy but will actively configure, administer, and operate the GRC platform to support assessments, evidence collection, workflow automation, audit readiness, and continuous compliance monitoring across the organization.
The role requires a practitioner who has implemented and run a GRC platform in a live production environment and can translate regulatory, operational, and cybersecurity requirements into sustainable, automated workflows within Hyperproof.

Key Responsibilities
Lead the implementation, configuration, administration, and optimization of the Hyperproof platform
Configure and manage:
oAssessments and questionnaires
oWorkflow routing to internal and external stakeholders
oControl libraries and control mappings to frameworks
oEvidence collection requests and automated reminders/notifications
Design and mature risk registers, control libraries, and evidence management workflows
Map Customer controls to relevant frameworks (e.g., NIST, ISO 27001, SOC 2, CIS, PCI where applicable)
Automate audit readiness and evidence collection processes using Hyperproof capabilities
Establish governance workflows for:
oRisk assessments
oVendor risk management
oPolicy lifecycle management
oControl testing and monitoring
Administer the platform in a production environment, including user and access setup
Build dashboards and reporting for executive visibility into compliance posture and risk trends
Train internal teams and stakeholders on effective and sustainable use of Hyperproof
Support internal and external audit preparation and response
Develop operating procedures so Customer can independently manage the platform post-engagement

Required Experience
8+ years in Governance, Risk, and Compliance (GRC), Information Security, or IT Risk
Hands-on experience implementing and operating a GRC platform Hyperproof strongly preferred
Direct Hyperproof administration experience in a production environment, including:
oUser and access configuration
oControl libraries
oEvidence requests
oAutomated reminders and notifications
Experience configuring assessments, questionnaires, workflows, and stakeholder routing
Proven experience standing up or maturing GRC programs using a GRC platform
Strong knowledge of compliance and security frameworks:
oNIST CSF / 800-53
oISO 27001
oSOC 2
oCIS Controls
Experience with audit readiness, evidence collection, and control mapping
Ability to bridge technical, compliance, and business stakeholders
Strong documentation and process development skills

Preferred Qualifications
Experience in public sector, transportation, or regulated environments
Experience with vendor risk management programs
Familiarity with policy lifecycle governance
Experience integrating Hyperproof with systems such as ServiceNow, Jira, or SharePoint
Relevant certifications such as CISA, CRISC, CISSP, or ISO 27001 Lead Implementer

Expected Outcomes
By the end of the engagement, Customer will have:
A fully configured and optimized Hyperproof environment aligned to compliance frameworks
Automated assessments, evidence workflows, and stakeholder routing
Centralized control management and reporting dashboards
Documented and repeatable GRC operational processes
Audit-ready evidence and reporting structure
Internal staff enabled to sustain and administer the platform independently

Ideal Candidate Profile
A senior GRC practitioner who has personally implemented and administered Hyperproof, understands how to operationalize compliance inside the tool, and can translate governance requirements into practical, automated workflows that Customer can sustain long-term