We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
CliftonLarsonAllen jobs

GRC Associate Consultant

CliftonLarsonAllen
parental leave, flex time, 401(k)
United States, Virginia, Arlington
Aug 15, 2025

CLA is a top 10 national professional services firm where our purpose is to create opportunities every day, for our clients, our people, and our communities through industry-focused wealth advisory, digital, audit, tax, consulting, and outsourcing services. Even with more than 8,500 people, 130 U.S. locations, and a global reach, we promise to know you and help you.

CLA is currently seeking a GRC Associate Consultant to join our growing Cybersecurity Team.

As a Cybersecurity GRC Associate, you'll play an essential role in helping clients assess, design, and improve cybersecurity control environments. Your responsibilities will include:

Control Assessment & Design

  • Evaluate existing cybersecurity control frameworks and recommend practical enhancements tailored to the client's operating environment.
  • Identify control gaps and evaluate associated risks, considering both likelihood and potential impact.
  • Support the development of risk treatment plans and risk acceptance rationales.
  • Assist with control design across people, process, and technology domains to align with regulatory, framework, and industry standards.
  • Collaborate with clients to assess control risk ratings, prioritize remediation efforts, and communicate residual risk.

Report Creation Documentation Support

  • Prepare clear, well-structured reports that communicate control deficiencies, risk implications, and prioritized recommendations.
  • Document findings and observations in a manner suitable for senior leadership, audit committees, and regulatory audiences.
  • Support clients in the development of remediation plans and internal reporting artifacts.

Qualifications

  • Bachelor's degree in cybersecurity, information technology,or a related discipline.
  • Relevant certifications (including associate status) such as CISA, CISSP, CRISC, Security+, or similar are desirable, but not required.
  • Familiarity with cybersecurity frameworks like NIST CSF, ISO/IEC 27001/27002, COBIT, or CIS Controls.
  • Strong analytical ability and meticulous attention to detail.
  • Excellent written and verbal communication skills.
  • Experience with GRC tools, audits, and risk assessments is a bonus.
  • Exemplify our CLA values - curious, collaborative, transparent, inclusive, and reliable.
  • Passion for doing impactful work, accountability for actions, initiative to make visions a reality, integrity that places honesty and trust above all else, professionalism, and conscientiousness.

Our Perks:

  • Flexible PTO (designed to offer flexible time away for you!)
  • Up to 12 weeks paid parental leave
  • Paid Volunteer Time Off
  • Mental health coverage
  • Quarterly Wellness stipend
  • Fertility benefits
  • Complete list of benefits here

#LI-RC1

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

Click here to learn about your hiring rights.

Wellness at CLA

To support our CLA family members, we focus on their physical, financial, social, and emotional well-being and offer comprehensive benefit options that include health, dental, vision, 401k and much more.

To view a complete list of benefits click here.

Applied = 0
MORE JOBS LIKE THIS

(web-5cf844c5d-jtghc)