Related skills
gdpr iso 27001 nist 800-171 cmmc pciπ Description
- Advise customers on information security policies and audit readiness across SOC 2, ISO 27001, HIPAA, PCI, GDPR, CCPA.
- Lead end-to-end control mapping across multiple frameworks to the Drata Control Framework (DCF).
- Serve as the primary compliance expert in customer meetings, via email, and to CS teams.
- Lead development and presentation of GRC best practices and common questions.
- Lead ongoing internal learning via mentorship, research, and internal presentations.
- Partner with Customer Success and Account Managers to provide advisory services to customers.
π― Requirements
- 4-6 years of audits/assessments for SOC 2 and ISO 27001/27002.
- Experience with HIPAA, PCI, GDPR, CMMC, FedRAMP, CCPA.
- Strong GRC background and program management.
- Familiar with GRC tools; hands-on with automation platforms.
- Experience in consulting/audit or GRC cybersecurity firms preferred.
- Self-starter with prioritization and strong customer relationships.
π Benefits
- Stock equity aligning your success with the company.
- 100% employer-paid medical, dental, and vision coverage.
- 401(k), life/disability insurance, tax-advantaged accounts.
- Paid parental leave after six months; fertility benefits.
- Annual development stipends and internal learning opportunities.
- Flexible vacation, paid holidays, and rest policies.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Business & Management Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!