What you get to do in this role:
- Support and lead various third-party assurance programs including ISO, SOC, PCI
- and more.
- Perform activities to help measure and monitor compliance with company policies
- and procedures
- Facilitate customer and certifier requests and information gathering for audit
- activities and lead onsite audits.
- Successfully project manage and drive testing activities across various teams within the organisation
- Contribute in enhancing our GRC tool and processes to meet compliance business needs
To be successful in this role you have:
- Minimum 7 to 9+ years working in the field of compliance or audit
- Practical working involvement, and successful history of facilitating and delivering
- PCI-DSS certifications
- Deep understanding of common certifications and attestations to include ISO 27001,
- PCI-DSS, SSAE18 SOC 1, SOC2, HITRUST, ISO 27701
- Prior experience of working in the Security and Compliance group at a SaaS/Cloud
- company or with Security & Risk practice of a Big 4 firm
- Relevant professional certifications such as CISSP, CISA, CISM, CIPP, GIAC, PMP
- Strong organisational skills, attention to detail and ability to multi task
- Prior experience with GRC systems
- Ability to understand the intent of compliance requirements to provide effective and
- meaningful analysis
- Excellent verbal and written skills
- Be able to work effectively with other members of the GRC organisation to drive
- results, to include a remote team
