Agency Cybersecurity · 5 days ago
Vice President, Compliance & GRC
New York, NY
Full-time
Onsite
Director/Executive
$175K/yr - $225K/yr
7+ years expAgency Cybersecurity is a fast-growing venture-backed startup providing top-tier cybersecurity and compliance solutions. They are seeking a Vice President of Compliance & GRC to lead their cybersecurity compliance practice, with responsibilities including practice ownership, team leadership, and client advisory.
Cyber SecurityProfessional ServicesSecurity
Responsibilities
Own full P&L responsibility for the Compliance & GRC practice, including revenue, margins, utilization, and cost management
Set practice strategy, service offerings, pricing models, and delivery standards
Forecast revenue, manage capacity planning, and drive sustainable growth
Partner with leadership on annual planning, targets, and practice expansion
Serve as executive sponsor and senior escalation point for key client engagements
Oversee delivery of SOC 2, ISO 27001, HIPAA, and other compliance frameworks across a large client portfolio
Ensure consistent, high-quality delivery across all engagements, from readiness through audit completion
Guide clients through complex compliance, risk, and regulatory challenges
Maintain strong executive-level client relationships and drive renewals and expansions
Build, manage, and scale a team of managers, senior consultants, and junior staff
Directly manage practice leaders and senior managers; indirectly oversee a larger delivery team
Set performance standards, career paths, and development plans
Lead hiring, onboarding, and training strategy for the practice
Foster a high-accountability, high-performance consulting culture
Drive practice growth through upsells, cross-sells, renewals, and new client acquisition
Support sales and business development through scoping, proposals, and executive-level client conversations
Help shape marketing narratives, thought leadership, and service positioning
Identify new frameworks, offerings, and market opportunities to expand the practice
Qualification
Required
7+ years of experience in cybersecurity and compliance consulting
Demonstrated experience owning and leading large portfolios of SOC 2 engagements
Deep domain expertise with 40+ SOC 2 engagements completed as primary point of contact
Proven experience leading SOC 2, ISO 27001, HIPAA, and related audits end-to-end
Prior experience managing teams of 10+ consultants, including managers and senior staff
Strong understanding of SOC 2, ISO 27001, HIPAA, NIST, and related frameworks
Track record of balancing delivery excellence with commercial outcomes
Exceptional executive-level communication and client relationship skills
Strong financial, operational, and strategic judgment
Bachelor's degree in Information Security, Computer Science, Business, or equivalent experience
Preferred
Professional certifications (CISSP, CISA, CISM, CRISC, or similar)
Experience with compliance automation and GRC platforms (Vanta, Drata, etc.)
Background working with high-growth technology companies and startups
Experience with additional frameworks such as FedRAMP, PCI-DSS, or GDPR
Previous experience at a Big Four firm or top-tier cybersecurity consultancy
Strong technical foundation in cloud infrastructure and security architecture
Benefits
Executive-level compensation: target $175,000–$225,000+ total compensation, including performance-based bonus tied to practice P&L
Significant leadership autonomy and ownership of a core revenue practice
Opportunity to build, scale, and shape a flagship compliance business
Work with top-tier, venture-backed and growth-stage clients
Collaborative executive team and fast-growing platform
Long-term career growth with potential for expanded leadership scope
Company
Agency Cybersecurity
Agency provides enterprise-level cybersecurity for individuals & growing companies.
11-50 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase