IT Risk & Compliance Consultant

  • Full-time

Company Description

Why You’ll Love Working With Us

The Clark Schaefer Hackett community includes trusted advisors with Clark Schaefer Hackett, Clark Schaefer Consulting, and Clark Schaefer Strategic HR. This elite community leverages strategic skills, financial and operational leadership, proven acumen, and technological advances to successfully provide customized solutions for every client and every engagement, and we apply this approach to our associates.

Job Description

We're Hiring: IT Risk & Cybersecurity Consultant

Remote | Serving OH • KY • IN | Minimal Travel

The Clark Schaefer Consulting team at Clark Schaefer Hackett

Are you passionate about cybersecurity and excited to make an impact across a wide range of clients and industries? At Clark Schaefer Consulting, we help organizations strengthen their IT controls, reduce risk, and stay ahead of emerging threats—and we’d love to meet you.

We’re a people‑first, values‑driven community guided by integrity, quality, respect, and innovation. If you're looking for meaningful work, flexibility, and opportunities to grow, this could be a great fit.

What You’ll Do

  • Partner with organizations of all sizes and industries
  • Deliver cybersecurity consulting and IT audit services
  • Support project planning and methodology development
  • Evaluate IT and security controls for compliance and effectiveness
  • Conduct penetration testing or simulated attacks
  • Create clear, actionable reports for clients
  • Advise on security + privacy requirements (state & federal)
  • Help develop security standards, policies, and best practices
  • Stay on top of emerging tech and cybersecurity trends
  • Collaborate with a high‑caliber team of professionals

Qualifications

Required Experience:

  • Bachelor’s degree in IT, Cybersecurity, or related field or 5+ years of relevant experience
  • 2-3+ years in IT Audit, Cybersecurity, IT Risk, or similar functional specialty area
  • Experience with assessments, audits, privacy/security programs
  • Significant experience with security compliance frameworks such as: SOC 2, SOX, HIPAA, CMMC, GDPR, PCI, NIST, ISO 27001, FFIEC, etc.

Additional Information

    What You Bring

    Core strengths:

    • Strong problem‑solving ability
    • Clear communication—especially with non‑technical audiences
    • Collaborative, adaptable, and self‑driven
    • Comfortable working remotely

      Certifications That Stand Out

      CISA • CISM • CISSP • CCSFP • CMMC (RP/RPA/CCP/CCA) • CRISC • GPEN • OSCP • OSWA • CEH • PenTest+

      I'm interested