Source Job

• Support the audit and assurance teams in performing ISO 27001 certification assessments and related information security audits.
• Assist in audit planning, evidence review, report preparation, and overall quality assurance.
• Handle client ingestion and onboarding activities, perform HubSpot data scrubbing and updates, and register new engagements in Asana and coordinate Insight ONE transfers.

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance.

Responsible for operating, supporting, and developing the ISO Practice with a high level of quality, productivity, and satisfaction for both clients and employees. Oversees the delivery of ISO certification services, ensures compliance with accreditation requirements. Leads the development of the audit team to drive efficiency, profitability, and growth within the practice.

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance.

• Perform ITGC and application control testing across SOC 2, SOC 1, and HIPAA engagements.
• Communicate with clients to request evidence, conduct walkthroughs, and clarify audit questions.
• Document findings and support the preparation of client deliverables.

Insight Assurance is a security and compliance firm trusted by over 1,200 organizations for their SOC 2, PCI DSS, ISO 27001, and HIPAA audit needs.

• Use security and compliance tools (GRC tools) to help the company stay audit-ready
• Manage IT assets and access permissions for team members and internal systems
• Support daily security operations related to ISO 27001 / SOC 2

Hopae is building the world’s most trusted digital identity platform — private, secure, and built for real life. Backed by top global investors, Hopae operates across Seoul, Paris, and San Francisco, bringing together exceptional talent from over 10 nationalities.

Lead day-to-day activities for SOC 2 and other IT compliance engagements. Guide staff, engage with clients, and play a key role in the delivery of high-quality audits and readiness assessments. Identify control gaps and provide recommendations for remediation.

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance.

Lead and support customer security audits and respond to security questionnaires. Prepare, coordinate, and manage ISO 27001 audits. Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory requirements.

OneStudyTeam specializes in speeding up clinical trials and increasing the chance of new therapies being approved with the ultimate goal of improving patient outcomes.

As a Compliance and Risk Specialist, you will support the Compliance and Risk team by leading compliance initiatives. You will conduct risk assessments and remediation activities. You will contribute to the development of security strategies for systems deployed globally.

Canadian Bank Note Company (CBN) is a trusted leader in secure technology solutions for governments and businesses worldwide.

As an Information Security Officer at Form3, you'll play a pivotal role in strengthening and evolving our information security governance, risk, and compliance practices. Work closely with teams across the organization to embed security into business and technology decisions. Combine strategic oversight with practical execution, ensuring our controls, frameworks, and awareness initiatives remain industry leading as we scale globally.

Form3 is a company that offers a cloud-native, environment while helping define how security scales with the business.

• Lead and mature LiveKit’s security and privacy compliance programs.
• Own the day-to-day operations of compliance workflows.
• Partner closely with Security and IT Engineers on controls design, documentation, governance, and audits.

LiveKit is revolutionizing the AI landscape by providing the network infrastructure that powers multimodal AI interfaces.

• Serve as a trusted Domain Expert/SME for client projects.
• Provide high-level strategic guidance.
• Share institutional knowledge and validate high-stakes GRC strategies.

REDE Consulting is a dynamic technology firm specializing in GRC (Governance, Risk, and Compliance) solutions across the finance and insurance sectors.

• Drive the implementation of technical controls and evidence gathering in collaboration with engineering for compliance standards.
• Manage the daily operational reality of audits, customer questionnaires, and internal IT/Security support requests.
• Rapidly prototype and ship internal tools, custom Vanta integrations, and scripts using AI-assisted development to close automation gaps.

Sayari is a risk intelligence provider equipping public and private sectors with visibility into complex commercial relationships. They deliver corporate and trade data from over 250 jurisdictions and are headquartered in Washington, D.C. They were also featured as one of Inc.’s “Best Workplaces” for 2025.

Plan and schedule remote security assessments for new and existing third-party relationships/engagements. Communicate Experian's third party risk management/security due diligence requirements to internal and external stakeholders. Identify information security deficiencies or risks at third parties and communicate with all stakeholders to obtain action plans, due dates, and documentation to evidence remediation of identified security risks/gaps.

Experian is a global data and technology company, powering opportunities for people and businesses around the world.