Similar Jobs
See allSenior Information Security Specialist
Secfix
Europe
Information Security
GRC
ISO 27001
Senior GRC Analyst
Garner
US
GRC
SOC 2
ISO 27001
Sr. GRC Analyst
Prosper
US
Python
Bash
AWS
Deputy Chief Information Security Officer
Sardine
United States
Application Security
GRC
Cloud Security
Senior Compliance and Risk Analyst
Calendly
US
Compliance
Risk Management
SOC 2
Responsibilities:
- Maintain and improve the ISO 27001 management system, ensuring controls are effective and continuously evidenced.
- Carry out recurring security activities such as vulnerability scanning, access reviews, and risk assessments.
- Support security team with tool reviews, vendor assessments, and customer due diligence.
Preferred Skills:
- 3+ years of experience in GRC, compliance, or information security within a SaaS company.
- Solid working knowledge of ISO 27001, including Annex A controls and audit processes.
- Hands-on experience with Vanta, AWS security suite, and AI tooling to automate compliance work.
Tools You’ll Use:
- Compliance and GRC: Vanta
- Cloud and security monitoring: AWS, GuardDuty, Inspector, Security Hub
- Identity and access: Google Workspace, SSO/MFA providers, JAMF
Didomi
Didomi is a consent management platform that helps companies manage user consent and data privacy. The company is a growing SaaS organization with a collaborative culture, emphasizing automation and efficiency.