Related skills
gdpr iso 27001 nist soc 2 onetrustπ Description
- Govern security and privacy policies and control frameworks.
- Support policy approval, exceptions, and attestation.
- Lead enterprise risk assessments and vendor reviews.
- Maintain risk register and remediation tracking.
- Contribute to Third-Party Risk Management program.
- Lead audit readiness for ISO 27001, SOC 2, PCI DSS, GDPR.
π― Requirements
- 5+ years in cybersecurity, governance, risk, or privacy.
- Strong knowledge ISO 27001, NIST, SOC 2, PCI DSS, GDPR.
- Hands-on with GRC tools: OneTrust, Hyperproof, AuditBoard, Drata.
- Experience with vendor risk and TPRM.
- Experience supporting client due diligence (security questionnaires, RFPs).
- Certifications such as CISM, CRISC, CISSP, CISA valued.
π Benefits
- Flexible hybrid work approach.
- DEIB culture with employee resource groups.
- Growth opportunities and challenging work.
- Accommodations available for accessibility needs.
- Caring, collaborative team making a difference.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Business & Management Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!