AI Cloud Security Compliance Manager (AI)

TL;DR

AI Cloud Security Compliance Manager (AI/GRC): Leading security compliance and AI governance for the AI Cloud business line with an accent on multi-framework certifications and AI regulatory implementation. Focus on operationalizing NIST AI RMF, automating technical control evidence, and ensuring compliance with emerging AI laws.

Location: Singapore, SG

Company

hirify.global is a world-leading technology company providing comprehensive Bitcoin mining solutions and high-performance AI cloud capabilities globally.

What you will do

• Serve as Program Owner for SOC 2 Type I/II and ISO/IEC 27001:2022 certifications across GPU bare metal and virtualized products.
• Design and lead ISO/IEC 42001 (AI Management System) certification, including AI Impact Assessments and model lifecycle controls.
• Operationalize NIST AI RMF and monitor EU AI Act implementation to design compliance guardrails for the platform.
• Act as the primary customer-facing compliance interface, managing security questionnaires and maintaining the Trust Center portal.
• Lead the selection and deployment of GRC platforms (e.g., Vanta, Drata) to automate evidence collection to 70%+.
• Draft and maintain AI Cloud security policy frameworks and manage the risk register and quarterly assessments.

Requirements

• 8+ years in information security or IT audit, with 4+ years in a GRC leadership role focused on cloud services (IaaS/PaaS).
• Proven end-to-end ownership of at least two frameworks (e.g., SOC 2 Type II, ISO 27001).
• Technical proficiency in Kubernetes, KVM/QEMU, Linux, and IAM (Okta/Keycloak).
• Professional fluency in both English and Mandarin Chinese for policy authoring and strategic communication.
• Bachelor's degree in Computer Science, Information Security, or a related field.
• Relevant certification such as ISO 27001 Lead Auditor/Implementer, CISA, CISSP, CCSK, or CCSP.

Nice to have

• Hands-on implementation experience with ISO 42001 or NIST AI RMF.
• Background at GPU cloud providers, supercomputing centers, or Big 4 IT Risk Advisory firms.
• Understanding of NVIDIA GPU cluster architecture, InfiniBand, and vGPU isolation.
• Basic scripting skills in Python, SQL, or Shell for evidence extraction.

Culture & Benefits

• Inclusive and respectable environment with an open workspace and start-up spirit.
• Opportunity to network with industrial pioneers and directly impact the digital asset industry.
• High degree of personal accountability, autonomy, and fast growth opportunities.
• Attractive welfare benefits, including training and mentoring programs.