Senior IT GRC Advisor (IT Audit & Risk & AWS Cloud)

Our client is seeking a Senior IT GRC Advisor to strengthen the organizations IT governance, risk, and compliance posture by leading IT risk assessments, conducting IT audits, evaluating cloud and third‑party vendors, and advising leadership on risk mitigation strategies. This role partners closely with IT, security, and business stakeholders to ensure internal controls are effective, risks are well‑managed, and compliance expectations are met.

This is a fully remote role with high visibility, meaningful impact, and a calm, supportive work environment.

No Visa Sponsorship | No Relocation Assistance

Work Schedule: 9AM-6PM (Eastern Time)

Location: 100% Remote (Preference for candidates in NC or nearby states)

• Contribute to additional GRC initiatives as assigned.
• Provide risk guidance on IT projects, initiatives, and technology changes.
• Develop and maintain GRC methodologies, templates, tools, and internal documentation.
• Conduct IT risk assessments across infrastructure, applications, cloud platforms, and business processes.
• Lead and execute IT audit and advisory engagements, including planning, fieldwork, reporting, and follow‑up.
• Evaluate internal controls and provide recommendations to strengthen the overall control environment.
• Collaborate with management to develop corrective action plans and monitor remediation progress.
• Perform third‑party and cloud vendor assessments to evaluate security, compliance, and contractual obligations.
• Deliver training and awareness programs related to IT controls and risk management.
• Support the development and adherence to GRC standards, policies, and procedures.

• 5+ years leading complex IT audit or advisory engagements.
• Experience conducting risk‑based operational or technical audits.
• Experience performing cloud platform audits (AWS preferred)
• Familiarity with control frameworks such as NIST, COBIT, and ITIL.
• Excellent communication, presentation, and stakeholder‑management skills.
• Ability to manage multiple projects independently in a remote environment.
• 5+ years of experience in IT auditing, IT security, or IT risk management.
• Strong understanding of IT infrastructure, cybersecurity concepts, operating systems, databases, networking, and cloud technologies.
• Bachelor's degree in Information Technology, Cybersecurity, Accounting, Audit, or a related field.

• CISA, CISSP, or CISM certification.
• Working knowledge of the HIPAA Security Rule.
• Experience conducting AI audits or AI governance assessments.

• Bonus eligible
• Paid Life & AD&D
• Wellness incentives
• Paid parental leave
• Medical, dental and vision
• Universal PTO + paid holidays
• Tuition reimbursement after 1 year
• 401(k) with up to 5% employer contribution