Compliance Officer

TL;DR

Compliance Officer (Information Security): Own and scale the security program, acting as the internal lead for compliance and security governance, working with Engineering, Product, Legal, and Sales. Focus on maintaining the Information Security Management System (ISMS), leading the certification lifecycle, and managing vendor security and third-party risk.

Company

hirify.global is a technology company working in the information and internet sectors.

What you will do

• Maintain and evolve our Information Security Management System (ISMS), including policies, standards, control documentation, and the company-wide risk register.
• Run readiness assessments, manage evidence collection, coordinate auditors, track remediation, and ensure continuous audit readiness.
• Conduct security assessments for new and existing vendors, define security requirements in contracts, and ensure critical partners meet our standards.
• Own customer security questionnaires, RFP responses, and due diligence processes; maintain a structured library of reusable answers and documentation.
• Ensure controls are operating effectively, coordinate internal testing, and partner with engineering to close gaps in a timely manner.
• Build and maintain a company-wide Compliance Management-System

Requirements

• 4+ years in Information Security, GRC, or compliance roles
• Hands-on experience owning or significantly contributing to SOC 2 and/or ISO 27001
• Practical experience managing audits and working with external auditors
• Experience handling customer security questionnaires in a B2B environment
• Familiarity with compliance tools such as Drata, Vanta, or similar
• Ability to work cross-functionally with technical and non-technical teams
• Structured, pragmatic, and execution-oriented mindset

Culture & Benefits

• Work with a globally distributed, high-talent engineering team
• Competitive compensation
• Remote-first culture
• Benefits depending on location