Home
/
Comprehensive
/
vCISO – GRC Advisor (Private Equity & Carveout Focus)
vCISO – GRC Advisor (Private Equity & Carveout Focus)-March 2024
Chicago
Mar 29, 2026
About vCISO – GRC Advisor (Private Equity & Carveout Focus)

About us: RKON is an ISO27001 and AICPA SOC 2 Type II certified company that specializes in providing IT migration and transformation services for the Mergers and Acquisitions market.  RKON was recently recognized as one of the 100 best places to work in IT, highlighting our competitive advantage of empowering thought leaders and providing cutting-edge solutions for the fast-paced industry of private equity. RKON is looking for ambitious professionals to join our award-winning team. We have a proven track record for finding and developing top talent with people that believe they can achieve something greater. We also pride ourselves on fostering an environment where initiative, creative thinking, and collaboration are encouraged and rewarded—a key reason for the extraordinary level of service we deliver to our customers.

RKON does not accept unsolicited resumes from staffing agencies, search firms or any third parties.

About the position: The vCISO – GRC Advisor (Private Equity Carveout Focus) will play a critical advisory role in assessing and enhancing governance, risk, and compliance (GRC) for entities undergoing private equity carveouts or mergers and acquisitions (MA). The advisor will be responsible for evaluating the target or newly independent entity’s security posture, identifying GRC gaps, and assisting with the development of tailored roadmaps to address key risks and compliance needs. This role requires a strategic thinker who understands the fast-paced environment of PE-backed entities and can provide actionable recommendations without being directly involved in technical implementation.

Key Responsibilities Include:

GRC Assessment Gap Analysis: Conduct comprehensive GRC assessments, including the evaluation of existing policies, procedures, controls, and regulatory requirements (e.g., ISO 27001, NIST CSF, SOC 2).

Identify areas of risk, regulatory gaps, and weaknesses in security governance.

Evaluate third-party vendor risks and interdependencies in newly structured entities.

Roadmap Development: Develop strategic GRC roadmaps that align with the organization’s business goals and private equity timelines.

Prioritize recommendations to address short-term risks and long-term security objectives.

Provide actionable steps to help organizations meet key regulatory or compliance milestones.

Regulatory and Compliance Advisory: Provide expert guidance on compliance frameworks, including NIST, ISO 27001, SOC 2, and emerging privacy regulations.

Ensure that recommendations reflect PE-backed entities’ scalability needs.

Support compliance initiatives with documentation, reporting, and audit preparation.

Board and Stakeholder Reporting: Collaborate with executive leadership, private equity sponsors, and other key stakeholders to communicate risk findings and mitigation plans effectively.

Prepare executive-level reports summarizing key risks, recommendations, and compliance progress.

MA Transition Support: Advise on the security implications of post-merger integration, carveout transitions, or divestitures.

Identify transitional risks (e.g., access management, data segregation) and provide practical guidance to mitigate them.

Support operational resilience and business continuity during transitions.

Third-Party and Vendor Risk: Assess the security posture of critical vendors and service providers, ensuring proper risk management during onboarding and throughout the engagement lifecycle.

Policy and Framework Development: Assist clients in developing or updating GRC frameworks, policies, and procedures to reflect their newly independent operating model.

Required Technical and Professional Expertise

5+ years of experience in GRC, information security, or internal audit roles with a focus on risk assessment and compliance.

Familiarity with private equity environments, carveouts, or MA-related GRC challenges.

Strong knowledge of compliance regulations such as ISO 27001, NIST CSF, SOC 2, and emerging privacy laws (e.g., GDPR, CCPA).

Proven ability to develop GRC roadmaps and work with cross-functional teams to prioritize and implement recommendations.

Strong business acumen and the ability to communicate technical risks in business terms.

Experience engaging with executive leadership and providing board-level presentations.

Preferred Technical and Professional Expertise

Experience supporting PE-backed entities in MA, carveouts, or other high-pressure transition environments.

Familiarity with third-party risk management and vendor assessment frameworks.

Industry-related certifications: CISSP, ISO 27001 Lead Auditor, CISA, CGRC (formerly CAP), or CDPSE.

Powered by JazzHR

Comments
Welcome to zdrecruit comments! Please keep conversations courteous and on-topic. To fosterproductive and respectful conversations, you may see comments from our Community Managers.
Sign up to post
Sort by
Show More Comments
SIMILAR JOBS
Fire Sprinkler Project Manager
Delta Fire Systems is a subsidiary of Western States Fire Protection (WSFP). WSFP and its subsidiaries are more than a company. We are a family of unique individuals committed to our purpose, our val
Machine Operator
At Kelly ® Professional & Industrial , we think job searching needs an upgrade (and a sidekick). That’s why we’ll be here every step of the process when you apply to be a Machine Operator with on
Marketing Operations Manager Senior - Process Innovation
Position Overview Company Overview: PNC’s Marketing organization is on a journey to redefine what great marketing looks like and to serve as an innovative growth engine for the business. We are inves
Data Engineer, Analytics
Summary: Meta Platforms, Inc. (Meta), formerly known as Facebook Inc., builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed
Inside Sales Specialist
Job Description Job Title: Inside Sales Specialist Job Location: Mumbai Reporting to: Head Service, Molecular About Company: Thermo Fisher Scientific Inc. (NYSE: TMO) is the world leader in serving s
Prepared Foods Associate Team Leader (Culinary & Deli Assistant Department Manager)
Job DescriptionAssists the Team Leader in all aspects of daily operations including profitability, expense control, buying, merchandising, labor, regulatory compliance and special projects as assigne
Software Engineer, Product
Summary: Meta Platforms, Inc. (Meta), formerly known as Facebook, Inc., builds technologies that help people connect, find communities, and grow businesses. When Facebook launched in 2004, it changed
Food Service Worker (Barista)
Summary About the position: This position is located at the Tomodachi Cafe in the Misawa Collocated Club, 35th Force Support Squadron, Misawa AB Japan. This is a Flexible employment category position
Oracle Cloud Applications Delivery Architect, Program Advisor
Job Description Oracle Cloud Delivery Architect / Program Leader North American Applications Consulting, Delivery Confidence Come join Oracle’s North American Consulting organization as we build out
Production Engineer
Summary: Meta Platforms, Inc. (Meta), formerly known as Facebook, Inc., builds technologies that help connect, find communities, and grow businesses. When Facebook launched in 2004, it changed the wa
OTHERS JOBS
About
Terms and Conditions Privacy policy Cookie Settings Contact Us
Services
Login register
zdrecruit Project Management Advertising and Marketing Education Sales
Links
zpostcode Recruit weather mreligion Yellowpages sport constellation shopping name game directory literature Word tour furnish Lottery tftnews lyrics News digital car dir Edu Finance
Copyright 2023-2026 - www.zdrecruit.com All Rights Reserved