DescriptionOur client is a cyber risk startup on a mission to make cloud compliance viable, effortless, and simple. They work tirelessly to create an automated end-to-end solution for startups and tech enterprises that struggle with meeting security audit demands.
Duties & Responsibilities
The perfect candidate will have a passion for people and technology, helping our customers to build trust in their organization through compliance; They are curious about information security and data protection; They enjoy simplifying complex processes and providing new ideas on how to improve them; They have a can-do attitude, are motivated to learn and continuously develop their skills.
Consult and prepare startups for security audits such as SOC2 and ISO 27001 including assessment, preparation and audit management.
Helping our customers fill out vendor security questionnaires.
Creation of Policies and Procedures, Risk Assessment and internal audit.
Advise customers on best-practices and security regulations.
Drive product improvements from the market's feedback and needs.
Coordinating activities spanning multiple teams and integration points up to completion, including planning and execution.
Ensure that compliance needs of clients are adequately met and establish and maintain long-term relationships.
Desired Experience & Qualification
+2 years experience in a Technology Risk, Compliance, GRC, CISO or similar position.
Extensive experience managing compliance projects and audits (i.e. SOC2, ISO 27001).
Ability to write and present articulated documentation and processes.
A background in answering security questionnaires.
Managing multiple projects and meeting deadlines by using technical tools.
Native English speaker with excellent verbal and written skills.
Proactive self-starter with a solution-focused and positive attitude.
An independent, curious, rigorous, and proactive type of person
Bachelor degree in Engineering, Information Systems, Computer Science, or Legal or equivalent - advantage
Information Security certification such as CISSP, CISA, CISM, CCSK, ISO 27001 Lead Implementer - advantage
Package & Remuneration
Market related based on skills and ability