Lead current ISO 27001, SOC 2, and PCI compliance initiatives.
Spearhead initiatives to identify and improve security risks.
Conduct Risk Assessments within customer systems.
Canadian Bank Note Company (CBN) is a leader and trusted provider of secure document and adjacent enterprise-level system solutions across various domains. They seek long-term relationships with their employees and offer a competitive compensation package, including health, medical, life insurance benefits, and a defined contribution pension plan with company matching.
Own a portfolio of security programs (planning, resourcing, milestones, dependencies, risk/issue management, and outcomes).
Create and maintain multi-quarter roadmaps aligned to Keyrock’s business and operating model across venues and services (CEX/DEX and liquidity services).
Establish governance and operating cadence: steering meetings, status reporting, program reviews, and executive updates.
Keyrock is a leading change-maker in the digital asset space, renowned for its partnerships and innovation. They have over 200 team members around the world with a diverse team hailing from 42 nationalities, with backgrounds ranging from DeFi natives to PhDs.
Own and evolve the GRC program in partnership with Legal and our CCO.
Develop, maintain, and enforce clear, practical security policies across all departments.
Develop and execute a comprehensive information security roadmap aligned with business objectives.
Allocate is a fintech company handling sensitive investor data and financial transactions. They are a rapidly growing organization that values client service, relentless problem-solving, and continuous improvement.
Embed privacy-by-design principles into Docker products, services, and internal platforms.
Partner closely with Docker engineering and product teams to integrate privacy requirements into architecture decisions, SDLC processes, and CI/CD pipelines.
Design, develop, and maintain automated GRC and privacy workflows to support compliance monitoring, control testing, DPIAs, risk assessments, reporting, and audit readiness.
Docker makes app development easier so developers can focus on what matters. Their remote-first team spans the globe and they are passionate about innovation and great developer experiences. With over 20 million monthly users and 20 billion image pulls, Docker is a trusted tool for building, sharing, and running apps.
Lead executive-level Microsoft Security discovery workshops focused on risk reduction, compliance alignment, and operational maturity
Design and validate end-to-end architecture leveraging: Microsoft Defender XDR (Endpoint, Identity, Office 365, Cloud Apps)
Develop multi-phase security roadmaps connecting assessment findings to prioritized initiatives and measurable business outcomes
Myriad360 aims to challenge and enable its employees to achieve great things. They foster an atmosphere of inclusion and provide an environment that enables every employee to work to the best of their ability.
You will review, challenge, and strengthen our systems, act as the security authority within engineering, define guardrails, and drive remediation when risks arise.
Operating independently, you’ll build the structure and standards needed as we scale.
Your mission is to own the company wide security strategy and architecture, ensure CIRO and SOC 2 alignment, and embed strong security practices across infrastructure, applications, and internal systems, while enabling engineering velocity.
Newton is changing how Canadians trade crypto, with the goal to make financial freedom something everyone can achieve by giving customers the tools and knowledge they need to navigate the crypto world. At Newton, you'll work with a remote team spread across Canada.
Assess and improve client security and IT controls.
Develop policies, processes, and risk assessments aligned to top frameworks like NIST, ISO 27001, and SOC 2.
Translate technical and regulatory requirements into clear, actionable steps for our clients.
Hotman Group is a rapidly growing boutique firm redefining cybersecurity and GRC. They help business leaders earn and keep customer trust through expert guidance and a commitment to quality, fostering a collaborative environment where every voice matters.
Work with private equity and portfolio company clients, consulting on how to apply an information security vision and strategy in alignment with customer business objectives.
Work with customers to assess and address information security risks.
Assist in managing customer security programs including the achievement and/or maintenance of key compliance initiatives such as SOC, ISO27001, NIST, PCI, and SOX.
Crosslake supports changemakers and helps them buy, build, and run better technology. They believe in a programmatic, proactive approach to actively manage technology throughout the investment lifecycle.
Partners with Sales to help customers address complex identity, access, and security challenges.
Serves as a trusted technical and business advisor, translating requirements into differentiated, outcome-driven solutions.
Design and position solutions that address identity governance, access control, risk reduction, and security automation.
ServiceNow, founded in 2004, provides AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500. Their cloud-based platform connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Serve as our Clients’ primary technical point of contact throughout the sales cycle
Experience designing, implementing, and operationalizing security controls across a wide range of IT and enterprise business systems
Understand and articulate complex technical information to both technical and non-technical audiences
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1000 employees and have established strategic partnerships with leading security vendors, serving as a trusted advisor to more than 4,200 customers.
Analyze existing legal security commitments and compare them against actual product security practices.
Conduct interviews with legal, security, and product stakeholders to document current security posture.
Draft and propose updates to security-related contract language, including security exhibits.
ItD is a consulting and software development company blending diversity, innovation, and integrity with real business results. It rejects strong hierarchy, empowering employees to deliver excellent results and be dynamic self-starters.
Provide expert guidance on the GuidePoint Security Information Assurance services portfolio.
Collaborate with sales teams to identify client needs and develop tailored solutions.
Drive revenue and profitability by expanding our customer base.
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. Since 2011, GuidePoint has grown to over 1,200 employees and serves as a trusted advisor to more than 6,200 customers.
Own and drive cross-functional security governance programs.
Lead end-to-end execution of security initiatives.
Manage senior and cross-functional stakeholders.
The Sui Foundation supports the development, growth, and adoption of the Sui network, a Layer 1 blockchain designed for Web3 experiences. They are committed to decentralization, transparency, and community engagement to onboard the next billion users to web3.
Lead SOC 2 and ISO programs through the full audit lifecycle.
Build integrations that continuously gather compliance evidence from AWS, GitHub, identity providers, and internal systems.
Evaluate and monitor third-party vendors for security and compliance risk.
Fieldguide is establishing a new state of trust for global commerce and capital markets through automating and streamlining the work of assurance and audit practitioners. The company is based in San Francisco, CA, and built as a remote-first company with a team that is inclusive, driven, humble and supportive.
Define and execute the GTM strategy across ServiceNow’s Risk and Security business.
Forge and deepen strategic alliances, notably with the M&A teams expanding the R&S portfolio.
Reimagine CISO and Chief Risk Officer (CRO) GTM through inventive pricing, packaging, and sales programs.
They are a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Their intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work.
Oversee third-party and internal risk assessments to support enterprise information security and governance, risk, and compliance (GRC) initiatives.
Manage vendor due diligence, maintains an accurate risk register, partners with internal stakeholders on mitigation strategies.
Drive continuous improvement of the risk and compliance framework.
Concorde Career Colleges is committed to a policy of Equal Employment Opportunity and will not discriminate against an applicant or employee based on race, color, religion, religious creed, national origin, ancestry, sex, age, veteran or military status, or any other legally protected characteristic. Concorde Career Colleges offer short career-focused programs preparing students for the healthcare industry.
Assist in the preparation and execution of third-party audits and assessments.
Support the development and maintenance of Eltropy’s GRC program.
Conduct and manage vendor security assessments, maintain risk tracking, and ensure third-party compliance.
Eltropy is a FinTech company aiming to transform financial service access. They provide an AI-enabled digital conversations platform for community financial institutions to enhance operations, engagement, and productivity.
Scale, automate, and optimize existing GRC, compliance, and customer assurance programs.
Optimize and automate an existing third-party risk program by improving risk signal quality.
Evaluate, implement and maintain GRC tooling with a focus on AI-powered automation to minimize operational overhead.
Monarch is a personal finance platform designed to simplify finances. They are a fully remote team of do-ers led by experienced entrepreneurs passionate about helping members reach their financial goals, hyper-focused on building a product people love and evolving based on user feedback.
Own, manage and be accountable for supporting our revenue team both on net new deals as well as renewals and RFIs when it comes to customer security reviews.
Flock Safety is a safety technology platform that helps communities thrive by taking a proactive approach to crime prevention and security. They're a high-performance, low-ego team driven by urgency, collaboration, and bold thinking.
Lead end-to-end audit execution across SOC 2, ISO 27001, ISO 42001, ISO 27701, HIPAA, and GDPR and maintain year-round audit readiness.
Build and mature Atlan's risk management program and turn abstract risk conversations into measurable metrics with clear ownership and quarterly leadership reviews.
Integrate our GRC platform with cloud infrastructure, CI/CD pipelines, HR systems, and product engineering tooling to automate evidence collection and continuous control testing.
Atlan is building the missing context layer for data and AI, helping enterprises close the AI value chasm and finally move AI pilots into production. We are backed by world-class investors including GIC, Insight Partners, Meritech, Peak XV, and Salesforce Ventures and trusted by global enterprises like Mastercard, Workday, General Motors, Unilever and others.