Related skills
risk management aws gcp it audit iso 27001๐ Description
- Conduct IT general and application control testing across ISO 27001, PCI-DSS, SOC 1/2.
- Partner with cross-functional teams to design and improve control processes and docs.
- Support third-party vendor assessments against security and privacy standards.
- Develop, maintain Information Security Policies and Standards aligned with industry best practices.
- Participate in IT SOX scoping, risk assessment, and control design activities.
- Prepare and deliver internal status reports on control findings and remediation progress.
๐ฏ Requirements
- Experience in security/IT audit and risk management with control frameworks.
- Working knowledge of NIST, ISO 27001, SOC 1, SOC 2, and PCI-DSS.
- Familiarity with cloud technologies including AWS, Azure, and GCP and cloud security considerations.
- Strong analytical and technical problem solving; ability to assess complex control environments.
- Collaborative across functions with clear communication to technical and non-technical audiences.
- Bonus: FedRAMP familiarity; certifications like CISA/CISSP; Big 4 experience; AI tooling in GRC.
๐ Benefits
- 100% employer-paid medical insurance
- Generous PTO, sick time, holidays, parental leave, volunteer days off
- RSU stock grants
- Professional development opportunities
- Monthly cell phone stipend
- Access to mental health support platform for employees and dependents
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to All Other Jobs. Just set your
preferences and Job Copilot will do the rest โ finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!