7-10 years of experience in Project or Program Management and regulatory compliance.
Have strong knowledge of information security and regulatory compliance.
Experience in internal auditing.
ISO 27001 Lead/internal auditor certified
Flexibility to travel for audits as required.
Experience in planning and supervising activities for multiple, large-scale projects.
Must Have worked in a product-based software or SaaS organization that involves integrating security compliance into the SDLC
Must Have worked or led end-to-end certification or audit cycles for at least two of the following: SOC 2, ISO 27001, PCI DSS, FedRAMP, NIST, HIPAA, or other comparable information security audits
Must be a CISA, ISO 27001 Lead Auditor/Internal Auditor, or otherwise certified as a comparable auditor?
Have you been directly responsible for developing or improving an ISMS
Must Have demonstrable experience coordinating compliance or security deliverables across multiple teams