Collaborate with cross-functional teams to maintain and improve the company's comprehensive compliance program.
Manage the end-to-end audit process for SOC 2 compliance, ensuring timely and accurate completion.
Oversee the Information Security Risk Management Program, documenting identified risks, coordinating mitigation efforts.
airSlate is a global SaaS technology company that develops no-code workflow automation, electronic signature, and document management solutions. They have teammates in more than 20 countries across three continents and main hubs in the United States, Poland, Romania, Ukraine and Philippines.
Coordinate compliance with standards (PCI, HIPAA, ISO 27002, SOC 1/2/3, FISMA/FedRAMP, etc.) under guidance.
Maintain evidence repositories and partner with SMEs to refresh artifacts.
Coordinate audits and certification efforts, partnering with support teams on timelines and resourcing.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries.
Own our information security strategy and build our security roadmap.
Maintain our ISO 27001 certification, preparing for SOC 2 readiness.
Operate strategically and tactically, developing policy and reviewing cloud configurations.
ApprovalMax is redefining how finance teams manage the Money Out cycle — from purchase orders and supplier bills to employee expense management and payroll. Trusted by 18,000+ businesses worldwide, our platform empowers companies to automate financial controls, ensure compliance, and scale efficiently.
Acting as the primary subject matter expert for all security and compliance inquiries.
Taking end-to-end ownership of certification lifecycles, such as ISO 27001 and Cyber Essentials.
Working closely with the GRC team to improve existing programs.
Sword Health is shifting healthcare from human-first to AI-first through its AI Care platform, making world-class healthcare available anytime, anywhere. They have over 1,000 enterprise clients and are backed by 42 clinical studies and over 44 patents.
Own vulnerability management, SIEM tuning and monitoring, incident response, and threat investigation.
Maintain secure baseline configurations based on industry standards.
Oversee AWS security controls and enforce cloud security guardrails.
Jobgether posts this position on behalf of a partner company. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Contribute to the cybersecurity governance framework, aligned with international standards.
Perform security audits, gap analyses, and cyber risk assessments.
Support Business Continuity Management (BCM) and IT Disaster Recovery (DR) activities.
Prima uses data and tech to rethink motor insurance, offering a great experience at a great price. They are a trusted provider for over 4 million drivers and are expanding in the UK and Spain, with over 300 engineers in the Engineering Department.
Design, review and develop security architectures for systems and networks.
Conduct security assessments and communicate identified risks from vulnerability scans.
Collaborate with Product & Engineering teams ensuring security integration in projects.
Jobgether is a platform leveraging AI to match candidates with suitable job opportunities. They focus on ensuring a fair and objective candidate review process, and operate with AI powered matching and partner companies.
Own the end-to-end process for client and prospect security questionnaires.
Collaborate with internal stakeholders, managing timelines to ensure accurate responses.
Develop and maintain a "Trust Center" to proactively address common security questions.
Included Health is a healthcare company that delivers integrated virtual care and navigation. They aim to break down barriers to provide high-quality care for every person, offering care guidance, advocacy, and access to personalized virtual and in-person care.
Work with engineering, information security, and product teams on data protection impact assessments.
Assist the Product & Privacy legal team with privacy and data protection matters.
Monitor operational privacy practices to assess adherence to corporate policy requirements.
Life360 helps people stay connected with their loved ones through location sharing and safety features. They are a remote-first company with over 750 employees, offering a supportive and innovative work environment.
Lead, develop, and mentor the Platform Security team, setting direction, managing performance, and ensuring strong communication and execution across distributed time zones.
Design, implement, and operate cloud security controls for AWS, GCP, and Azure to protect infrastructure, services, and applications from evolving threats.
Partner with engineering and product leadership to influence architecture decisions, define security requirements, and ensure alignment with Affirm’s technical strategy.
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compounding interest. Security is critical to Affirm’s mission, and they aim to embed a strong security culture across the company so they can build and operate honest financial products.
Performs analysis of Alliance information security practices.
Identifies, investigates, and resolves security breaches.
Leads and performs staff training on information security.
Central California Alliance for Health (the Alliance) is an award-winning regional Medi-Cal managed care plan that provides health insurance for children, adults, seniors and people with disabilities. They currently serve more than 418,000 members with over 500 employees.
Play a critical role in the technical development, implementation, and maintenance of the GRC platform.
Drive integration strategies between GRC platforms and enterprise systems for automated data sharing and reporting.
Provide expert guidance and leadership on GRC technical matters to senior leadership and business stakeholders.
Jobgether is a platform helping candidates find jobs. They use AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Design and implement security solutions across enterprise platforms and cloud environments.
Perform threat modeling and security risk assessments for new features and platforms.
Partner with product teams to embed security requirements early in the SDLC.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange, they have a team of 22,500 people across 32 countries and are committed to investing in their people.
Deliver world-class cyber security assessment and advisory services across multiple Compliance offerings.
Work effectively as a team member on large engagements and remain current on technical knowledge.
Demonstrate GuidePoint’s Core Values at all times and achieve and maintain relevant cyber security and audit certifications.
GuidePoint Security provides trusted cybersecurity expertise, solutions and services that help organizations make better decisions and minimize risk. Since its inception in 2011, GuidePoint has grown to over 1000 employees and firmly-defined core values drive all aspects of the business, which have been paramount to the company’s success and establishment of an enjoyable workplace atmosphere.
Design, build, and maintain security tools, scripts, and automations.
Partner with Engineering teams to manage and drive remediation of security vulnerabilities.
Evaluate and prioritize security risks based on industry standards and business context.
Weedmaps is a global leader in the cannabis industry. They are dedicated to transparency, education, and community, serving cannabis to consumers and businesses in the U.S. and worldwide.
Generate and provide IT documentation for internal and external audits.
Follow up on resolution of audit findings related to IT compliance.
We are the company that cares – for our staff, for our clients, for our partners and for the quality of the work we do. A dynamic, global company founded in 1995, we bring together more than 2,900 driven, dedicated and passionate individuals.
Implement and manage cloud-native security tools and third-party solutions for threat detection and incident response.
Define, maintain, and execute the Incident Response plan, investigating and resolving incident escalations.
Collaborate with Dev, DevOps, and Infra teams to remediate identified vulnerabilities, discuss security best practices, and assist with security incident response.
We are redefining the future of legal operations through the power of AI, offering a cutting-edge platform that streamlines enterprise legal management, matter management, spend management, and contract lifecycle processes. We are a team of innovators using AI at the core to help legal departments become faster, smarter, and more strategic.
Own the 24‑month global security roadmap developed with an external partner; drive planning, resource allocation, cross‑region rollout, milestone tracking, and KPI delivery.
Lead the cybersecurity transformation: redesign the security operating model, establish regional capability hubs, hire and upskill teams, and integrate security into engineering and product lifecycles.
Modernize security tooling and architecture: define global architecture for IAM, cloud security, vulnerability management, SIEM/XDR, DLP, and secure SDLC integrations; manage vendor selection and lifecycle.
Black Duck Software, Inc. helps organizations build secure, high-quality software, minimizing risks while maximizing speed and productivity. With a combination of industry-leading tools, services, and expertise, Black Duck helps organizations maximize security and quality in DevSecOps and throughout the software development life cycle.
Manage information security incidents and security risks across the organisation
Own and maintain the Information Security Management System (ISMS), including creating and updating policies, procedures, and guidance
Ensure adherence to information security policies and standards
TwinStream was formed in 2019 by engineers solving complex cross-domain problems within government organisations. They provide technical excellence and exceptional service to their clients with teams working both on-site and remotely.
Provide guidance to teams on the application of compliance requirements.
Maintain subject matter expertise on U.S. federal and state consumer protection and privacy laws and regulations.
Conduct and document assessments of compliance and privacy risks and controls for targeted processes, products and regulatory changes.
Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries.