Senior Director, Compliance (Cybersecurity)

TL;DR

Senior Director, Compliance (Cybersecurity): Leading the external compliance program and ensuring the successful execution of SOC 2, ISO 27001, and PCI DSS audits for cloud-based systems with an accent on translating framework requirements into practical technical controls. Focus on maturing the compliance strategy, automating evidence collection, and partnering with engineering teams to embed security into system design.

Location: Remote (USA). Candidates near offices may choose a hybrid setup (Tuesday/Wednesday in office). Must be authorized to work in the US.

Salary: $120,000 – $175,000

Company

hirify.global is a self-sustaining nonprofit focused on expanding educational and career opportunities.

What you will do

• Lead the execution of external compliance audits including SOC 2, ISO 27001, and PCI DSS.
• Act as the primary liaison for external auditors, managing communications and evidence requests.
• Develop and execute a long-term compliance strategy and roadmap aligned with cloud-native operating models.
• Translate complex framework requirements into auditable technical controls for engineering and infrastructure teams.
• Establish governance processes for control ownership, monitoring, and exception management to maintain audit readiness.
• Collaborate cross-functionally with legal, engineering, and operations to ensure compliance is embedded into day-to-day workflows.

Requirements

• 8-10+ years of experience in networking, information security, and security auditing.
• Proven ability to lead end-to-end SOC 2, ISO 27001, and PCI DSS audits in cloud-based environments.
• Deep expertise in evaluating cloud-native architectures against security best practices, primarily in AWS.
• Solid background in IAM, network segmentation, encryption, and secure system design.
• Authorization to work in the United States.
• Ability to travel 3-4 times a year to company offices.

Nice to have

• Professional security certifications such as CISSP, CRISC, CISM, or CISA.
• Experience implementing automated control monitoring or compliance tooling.
• Working knowledge of Azure or Google Cloud Platform.

Culture & Benefits

• Competitive, market-based compensation rooted in fairness and transparency.
• Flexible work arrangements including full remote or hybrid options.
• Mission-driven culture centered on expanding educational opportunities.
• Emphasis on a learner's mindset, iterative growth, and diversity of perspectives.

Hiring process

• Initial application review and recruiter phone/video screen.
• Hiring manager interview and a performance exercise.
• Panel interview, leadership conversation, and reference checks.