Related skills
aws itgc tprm soc 2 type ii iso 27001:2022π Description
- Own ISO 27001:2022 and SOC 2 Type II; be the auditor contact.
- Plan readiness assessments; close gaps; collect evidence; respond.
- Maintain audit calendars, evidence repos, and bridge letters.
- Drive PCI DSS v4.0.1 scope reduction and assessments.
- Maintain ISMS aligned to ISO 27001:2022 with live evidence.
- Lead ITGC and internal audits; ensure findings closure with Eng/IT.
π― Requirements
- 4β6 years in security compliance, IT audit, or GRC at a product company.
- Hands-on ISO 27001:2022 end-to-end: gap β implementation β certification β surveillance.
- Hands-on SOC 2 Type II end-to-end; auditor management.
- Strong ITGC experience: access, change, ops, SDLC control design/testing.
- Strong TPRM experience across full vendor lifecycle.
- Cloud knowledge (AWS and/or GCP); CIS benchmarks; evidence services.
π Benefits
- Extensive medical insurance for employees and families; MeeCare wellness program.
- Telehealth, wellness events, and fitness-related perks.
- Generous leave policies, parental support, retirement benefits, and L&D.
- Relocation assistance and flexible benefit plans; salary advance.
- Inclusive, accessible workplace with equal opportunity and accommodations.
- Equity options and internal growth opportunities.
π Relocation support
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Operations Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!