Own the end-to-end process for client and prospect security questionnaires.
Collaborate with internal stakeholders, managing timelines to ensure accurate responses.
Develop and maintain a "Trust Center" to proactively address common security questions.
Included Health is a healthcare company that delivers integrated virtual care and navigation. They aim to break down barriers to provide high-quality care for every person, offering care guidance, advocacy, and access to personalized virtual and in-person care.
Own our information security strategy and build our security roadmap.
Maintain our ISO 27001 certification, preparing for SOC 2 readiness.
Operate strategically and tactically, developing policy and reviewing cloud configurations.
ApprovalMax is redefining how finance teams manage the Money Out cycle — from purchase orders and supplier bills to employee expense management and payroll. Trusted by 18,000+ businesses worldwide, our platform empowers companies to automate financial controls, ensure compliance, and scale efficiently.
Lead and support customer security audits and respond to security questionnaires. Prepare, coordinate, and manage ISO 27001 audits. Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory requirements.
OneStudyTeam specializes in speeding up clinical trials and increasing the chance of new therapies being approved with the ultimate goal of improving patient outcomes.
Define and execute compliance program strategy across various domains.
Lead enterprise-wide compliance programs with multi-year timelines.
Create scalable compliance frameworks and integrate processes across products.
Jobgether connects job seekers with opportunities at partner companies. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Acting as the primary subject matter expert for all security and compliance inquiries.
Taking end-to-end ownership of certification lifecycles, such as ISO 27001 and Cyber Essentials.
Working closely with the GRC team to improve existing programs.
Sword Health is shifting healthcare from human-first to AI-first through its AI Care platform, making world-class healthcare available anytime, anywhere. They have over 1,000 enterprise clients and are backed by 42 clinical studies and over 44 patents.
Lead and mentor the app security team, fostering a culture of security awareness and continuous improvement across the organization.
Oversee the day-to-day security operations, including monitoring, threat detection, incident response, and vulnerability management.
Maintain an application security risk management framework, identifying, analyzing, and treating risks.
TrueML is a mission-driven financial software company that aims to create better customer experiences for distressed borrowers. The TrueML team includes inspired data scientists, financial services industry experts, and customer experience fanatics who are building technology to serve people in a way that recognizes their unique needs and preferences as human beings and endeavors to ensure nobody gets locked out of the financial system.
As a Compliance and Risk Specialist, you will support the Compliance and Risk team by leading compliance initiatives. You will conduct risk assessments and remediation activities. You will contribute to the development of security strategies for systems deployed globally.
Canadian Bank Note Company (CBN) is a trusted leader in secure technology solutions for governments and businesses worldwide.
Design, review and develop security architectures for systems and networks.
Conduct security assessments and communicate identified risks from vulnerability scans.
Collaborate with Product & Engineering teams ensuring security integration in projects.
Jobgether is a platform leveraging AI to match candidates with suitable job opportunities. They focus on ensuring a fair and objective candidate review process, and operate with AI powered matching and partner companies.
Performs analysis of Alliance information security practices.
Identifies, investigates, and resolves security breaches.
Leads and performs staff training on information security.
Central California Alliance for Health (the Alliance) is an award-winning regional Medi-Cal managed care plan that provides health insurance for children, adults, seniors and people with disabilities. They currently serve more than 418,000 members with over 500 employees.
Design, lead, and execute strategic security programs to mitigate security risks.
Collaborate with security engineers to integrate and operationalize security controls.
Establish clear, measurable metrics to track the impact of security programs.
DoorDash's mission is to empower local economies. They are a technology and logistics company known for delivering food, looking to expand into delivering all goods, fostering a culture where team members can share perspectives and solve challenges.
Monitor SIEM alerts, triage incidents, and escalate as needed to ensure timely resolution
Conduct third-party and supply chain risk management reviews, including audit report analysis
Collaborate with engineering, IT, and operations teams to integrate and maintain security controls
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. It identifies top-fitting candidates and shares this shortlist with the hiring company.
Advise tuning of SIEM correlation rules and use cases to identify security incidents and anomalies.
Monitor SIEM alerts, triage, and respond to security incidents in a timely manner, escalating as necessary to the appropriate team(s) for further investigation and remediation.
Perform Third Party/Supply Chain Risk Management reviews, to include security research and audit report analysis.
Defense Unicorns delivers mission value by streamlining software delivery so our customers can focus on the most important challenges. Our team is composed of innovators, software engineers, and veterans with decades of experience delivering technology programs across the federal market.
Drive the implementation of technical controls and evidence gathering in collaboration with engineering for compliance standards.
Manage the daily operational reality of audits, customer questionnaires, and internal IT/Security support requests.
Rapidly prototype and ship internal tools, custom Vanta integrations, and scripts using AI-assisted development to close automation gaps.
Sayari is a risk intelligence provider equipping public and private sectors with visibility into complex commercial relationships. They deliver corporate and trade data from over 250 jurisdictions and are headquartered in Washington, D.C. They were also featured as one of Inc.’s “Best Workplaces” for 2025.
Refine existing regulatory compliance programs related to third party suppliers.
Oversee due diligence and performance monitoring activities for regulatory compliance.
Act as a subject matter expert for audit and exam requests.
Jobgether helps partner companies to find the right candidate. They use an AI-powered matching process to ensure applications are reviewed quickly, objectively, and fairly against the role's core requirements.
Use security and compliance tools (GRC tools) to help the company stay audit-ready
Manage IT assets and access permissions for team members and internal systems
Support daily security operations related to ISO 27001 / SOC 2
Hopae is building the world’s most trusted digital identity platform — private, secure, and built for real life. Backed by top global investors, Hopae operates across Seoul, Paris, and San Francisco, bringing together exceptional talent from over 10 nationalities.
Collaborate with DevOps, CI/CD engineers, and the Architecture team to implement and maintain security best practices across infrastructure.
Assess, design, and implement security processes and controls to meet security, compliance, and audit requirements.
Conduct proactive research to identify emerging threats and attack vectors.
LastPass is a leader in password and identity management, making it easier to log into life and work, and is trusted by 100,000 businesses and millions of users.
Lead end-to-end planning and execution of major Security programs that cross multiple teams and collectives. Collaborate and communicate with multiple stakeholders, both technical and non-technical across the business to ensure alignment and speed of delivery. Drive effective decision making to remove blockers.
Monzo's mission is to make money work for everyone, everywhere by solving problems through banking.
Lead corporate security for North America, focusing on physical risk management and assurance for Experian staff and assets.
Be the regional subject matter expert and ensure agreement on global security programs while supporting compliance, risk mitigation, and incident response.
Oversee regional corporate security programs, including facility risk assessments, workplace violence response, event security, and insider threat detection.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. A FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 23,300 people across 32 countries, and their corporate headquarters are in Dublin, Ireland.