Internal Security Compliance Auditor (Cybersecurity)
Вакансия из Hirify Global, списка международных tech-компанийДля мэтча и отклика нужен Plus
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Internal Security Compliance Auditor (Cybersecurity): Ensuring the quality and completeness of client evidence for formal external compliance audits with an accent on SOC2, ISO27001, PCI, HIPAA, and GDPR frameworks. Focus on validating security controls, performing pre-audit quality assurance checks, and identifying documentation gaps.
Location: Remote (Global)
Company
is a fast-growing security and compliance platform dedicated to making cybersecurity and compliance effective, easy, and painless.
What you will do
- Perform thorough internal reviews of client-uploaded evidence for SOC2, ISO27001, PCI, HIPAA, and GDPR.
- Conduct detailed QA checks on individual controls to verify completeness and accuracy prior to third-party audits.
- Identify gaps or weaknesses in evidence documentation and recommend strategic improvements.
- Develop internal QA standards, review methodologies, and guidance documents for clients.
- Collaborate with Security Program Engineers and the product team to enhance the compliance platform.
- Track audit readiness metrics and identify opportunities for process improvement.
Requirements
- Deep understanding of SOC2, ISO27001, PCI, HIPAA, and GDPR requirements.
- Strong technical knowledge of security controls and their implementation.
- Experience reviewing and evaluating evidence for compliance audits and pre-audit preparation.
- Excellent attention to detail and a quality control mindset.
- Strong written communication skills for documenting findings.
- Ability to work independently while managing multiple client engagements.
Nice to have
- Certification in relevant frameworks such as CISA or ISO 27001 Lead Auditor.
- Familiarity with compliance automation platforms and tools.
Culture & Benefits
- Comprehensive health and wellness benefits.
- 20 days PTO per year plus 8 floating holidays.
- Remote-first work culture with team off-sites in international locations.
- Competitive compensation and equity options.
- Environment that values impact over titles, autonomy over micromanagement, and clarity over jargon.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Похожие вакансии
Senior Federal Compliance Manager
Executive Advisor, Governance, Risk & Compliance (Cybersecurity)
Compliance Analyst (Cybersecurity)
Senior Security Engineer (Compliance and Risk)
Compliance Engineer (Cybersecurity)