CareersGet in Touch
Back to Careers

Security & Privacy Consultant – GRC Specialist

Tel AvivFull Time

We are

We are a cloud and security services company composed of technical experts with extensive hands-on experience. We act as trusted advisors to our clients, offering independent, objective and custom-tailored consultation. Our team is dedicated to helping customers through every stage of their cloud and cybersecurity journey, from strategic planning and design to implementation and ongoing operations.

About the position

As a Security & Privacy Consultant specializing in GRC (Governance, Risk and Compliance), you will play a key role in delivering security and privacy services to clients across multiple industries. You will support CISO and DPO functions by contributing to compliance and risk initiatives and helping organizations align their security and privacy programs with recognized standards and regulatory requirements.

Beyond client delivery, you will have the opportunity to help shape and improve our GRC, security, and privacy services, contribute to process design, and participate in improving and automating workflows and documentation.

Responsibilities

  • Deliver security and privacy consulting services, including GRC-related risk assessments, gap analyses, and compliance initiatives.
  • Support clients in aligning their security and privacy programs with standards and regulations such as ISO 27001, SOC 2, and key privacy regulations (e.g., Israel's Privacy Law, GDPR).
  • Develop and review security and privacy policies, procedures, and governance controls.
  • Assist clients with audit preparation and ongoing compliance maintenance.
  • Support project execution by tracking timelines, monitoring progress, and ensuring deliverables meet quality and scope expectations.
  • Collaborate with security, infrastructure, and business teams to ensure recommendations are practical and achievable.
  • Contribute to the development of new services, methodologies, and the automation of GRC, risk, and compliance workflows.
  • Provide clear, risk-based recommendations to technical and non-technical stakeholders.
  • Participate in client workshops, training sessions, and security and privacy awareness activities.

Qualifications

  • Around 1 year of experience as a Security or GRC Consultant, or in a related security, risk, or compliance role.
  • Familiarity with GRC frameworks, including ISO 27001, SOC 2, and key privacy regulations.
  • Active Top Secret civilian clearance — an advantage.
  • General understanding of IT infrastructure, cloud environments, or DevOps workflows, sufficient to support practical and achievable security recommendations.
  • Strong analytical skills and attention to detail.
  • Excellent communication skills, with the ability to explain security, risk, and compliance topics clearly to different audiences.
  • DPO course or formal privacy-related training — an advantage.