Related skills
iso 27001 vanta grc pci dss soc 2π Description
- Lead audit readiness and execution for SOC 2, ISO 27001, PCI DSS.
- Manage the compliance lifecycle in a GRC tool (Vanta/Drata); evidence, controls, monitoring.
- Coordinate cross-functional audits with engineering, product, security, and support.
- Design scalable internal audit programs; identify gaps and drive improvements.
- Partner with external auditors for smooth audits and timely certifications.
- Document policies and controls that align with standards and security-by-design.
π― Requirements
- 5+ years in internal audit, compliance, or GRC in fast-growth SaaS or cloud infra.
- Understand modern engineering practices and leverage them for compliance without slowing agility.
- Hands-on SOC 2, ISO 27001, PCI DSS audits; led or contributed to certifications.
- Proficient with Vanta or similar GRC platforms (Drata/Secureframe); comfortable with automation.
- Translate requirements into practical, developer-friendly processes; communicate with engineers and executives.
- Experience in async or globally distributed teams; self-directed and remote.
π Benefits
- Fully Remote
- ESOP
- Tech Allowance
- Health Benefits
- Annual Off-Sites
- Flexible Work
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Operations Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!