Similar Jobs
See allSecurity Engineer
HighLevel
Global
GRC
Risk Management
Compliance
Senior IT Security GRC Specialist
EcoVadis
Poland
GRC
ISO 27001
GDPR
Security GRC Analyst
Hims & Hers
US
GRC
Risk Management
Audit
Information Security Manager, Cyber Remote
Qohash
Canada
Risk Management
Compliance
Cloud Security
Security Operations Analyst
Cority
Canada
Information Security
Cloud Security
Risk Assessment
Responsibilities:
- Lead end-to-end PCI DSS compliance, including CDE scoping and reduction, control implementation/validation, and audit management (RoC/SAQ, QSAs).
- Lead and support SOC 2 Type II attestation initiatives, including TSC mapping, evidence collection, control testing, and remediation tracking
- Support and maintain ISO 27001 ISMS, including risk assessments, SoA, internal audits, and continuous improvement activities
Qualifications:
- 4.5+ years of experience in GRC, risk management, or compliance , with exposure to technical security controls .
- Strong hands-on experience with PCI DSS, including audits, CDE scoping, and control validation
- Experience implementing and maintaining ISO 27001 ISMS, including risk assessments and Annex A controls
Skills:
- Ability to interpret technical security concepts such as cloud architecture, network segmentation, access controls, and vulnerability reports
- Strong analytical, documentation, and stakeholder communication skills
- Experience working in cloud-native or SaaS environments
HighLevel
HighLevel is an AI-powered business operating system that gives agencies, entrepreneurs and SMBs the infrastructure to build, automate and scale. With over 2,000 team members across 10+ countries, HighLevel operates as a global, remote-first organization built for speed and ownership.