Own the end-to-end process for client and prospect security questionnaires.
Collaborate with internal stakeholders, managing timelines to ensure accurate responses.
Develop and maintain a "Trust Center" to proactively address common security questions.
Included Health is a healthcare company that delivers integrated virtual care and navigation. They aim to break down barriers to provide high-quality care for every person, offering care guidance, advocacy, and access to personalized virtual and in-person care.
Collaborate with cross-functional teams to maintain and improve the company's comprehensive compliance program.
Manage the end-to-end audit process for SOC 2 compliance, ensuring timely and accurate completion.
Oversee the Information Security Risk Management Program, documenting identified risks, coordinating mitigation efforts.
airSlate is a global SaaS technology company that develops no-code workflow automation, electronic signature, and document management solutions. They have teammates in more than 20 countries across three continents and main hubs in the United States, Poland, Romania, Ukraine and Philippines.
Lead the configuration and management of GRC tools to ensure integration with security systems.
Manage the main dashboard for SOC 2 reporting, ensuring accuracy and compliance.
Develop and maintain a comprehensive risk management program and conduct risk assessments.
Engine is transforming business travel into something personalized, rewarding, and simple. They have over 20,000 companies relying on Engine to support over 1 million travelers and billions in annual bookings each year and have been recognized as one of the fastest-growing travel and fintech platforms in North America.
Own and drive the GRC project portfolio, defining project goals and execution plans.
Support audit and certification efforts, translating complex technical requirements into clear project plans.
Leverage AI tools to automate reporting and enhance visibility, maintaining consistent communication with stakeholders.
Jobgether is a platform that connects job seekers with companies. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Drive execution of complex technical programs at the intersection of Security, Engineering, and Compliance.
Translate complex technical initiatives into clear programs that meet security and regulatory obligations.
Influence security strategy and drive alignment across Engineering, Compliance, and People Ops.
Rula is dedicated to treating the whole person and creating a world where mental health is embraced. They are a remote-first company that strives to be a force for positive change in the field of mental healthcare and hire in most U.S. states.
Collaborate with business leadership, Legal, Procurement, and Cyber to review terms and conditions.
Track status of risk remediations in the risk register with business stakeholders.
Contribute to overall program enhancements and drive automation with various IT and Cybersecurity stakeholders.
NBCUniversal is a leading media and entertainment company that creates world-class content across film, television, and streaming. They own and operate entertainment and news brands, with a focus on improving communities, championing an inclusive culture, and attracting a talented workforce.
Design and test prompts to shape AI behavior and review outputs.
Build and maintain the “truth layer” for real-world GRC answers.
Evaluate and improve AI quality, ensuring responsible AI use.
Vanta helps businesses earn and prove trust by continuously monitoring and verifying their security. They empower companies to practice better security and prove it with ease, with a kind and talented team that consists of both people with and without prior security experience.
Lead comprehensive security audits of client security operations programs.
Analyze security monitoring and alerting to perform a gap analysis.
Conduct cyber risk assessments using industry frameworks.
They build cybersecurity software and solutions. Palo Alto Networks challenges the status quo, and they are looking for innovators who are as committed to shaping the future of cybersecurity as they are.
Acting as the primary subject matter expert for all security and compliance inquiries.
Taking end-to-end ownership of certification lifecycles, such as ISO 27001 and Cyber Essentials.
Working closely with the GRC team to improve existing programs.
Sword Health is shifting healthcare from human-first to AI-first through its AI Care platform, making world-class healthcare available anytime, anywhere. They have over 1,000 enterprise clients and are backed by 42 clinical studies and over 44 patents.
Define and execute compliance program strategy across various domains.
Lead enterprise-wide compliance programs with multi-year timelines.
Create scalable compliance frameworks and integrate processes across products.
Jobgether connects job seekers with opportunities at partner companies. They use an AI-powered matching process to ensure applications are reviewed quickly and fairly.
Perform internal audits and vulnerability testing, ensuring security controls are monitored.
Lead security architecture governance for internal IT and projects, using Unified Architecture Framework.
Maintain compliance with security requirements and develop roadmaps to address evolving threats.
Jobgether is a platform connecting job seekers with companies. It uses AI-powered matching to ensure applications are reviewed quickly and fairly, identifying top candidates for employers.
Play a critical role in the technical development, implementation, and maintenance of the GRC platform.
Drive integration strategies between GRC platforms and enterprise systems for automated data sharing and reporting.
Provide expert guidance and leadership on GRC technical matters to senior leadership and business stakeholders.
Jobgether is a platform helping candidates find jobs. They use AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements.
Own and operate n8n’s vulnerability intake and triage process, including the [email protected] inbox
Define and maintain security policies, standards, and public-facing disclosure documentation
Embed security into the software development lifecycle through threat modeling, design reviews, and pragmatic guardrails
n8n is the open workflow orchestration platform built for the new era of AI. They give technical teams the freedom of code with the speed of no-code, so they can automate faster, smarter, and without limits. Since their founding in 2019, they’ve grown into a diverse team of over 160.
Kundenberatung bei der Bewältigung der geschäftlichen Veränderungen, die innerhalb der Organisation des Kunden erforderlich sind.
Als Engagement Manager die Lieferverantwortung für einen oder mehrere Kunden übernehmen.
Geschäftsprozessdefinition, Reengineering, Verbesserung und Gap-Analyse aktueller/zukünftiger Prozesse während Workshops mit wichtigen Kundensponsoren und Stakeholdern leiten.
Devoteam N Platform provides a holistic transformation approach for the entire ServiceNow platform. They support customers in providing digital workflows that increase operational productivity, improve employee experiences, and redefine customer loyalty.
Conduct vendor risk reviews and evaluate third-party attestations.
Analyze vendor contracts and identify potential risk clauses.
Support annual high-risk vendor audits and maintain documentation.
Jobgether uses an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Their system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company, the final decision and next steps (interviews, assessments) are managed by their internal team.
Serve as the system Security Manager / ISSO for My HealtheVet and act as the primary security point of contact for internal leadership and VA stakeholders.
Drive a risk-based security approach appropriate for a FISMA High / HVA system.
Coordinate incident response activities, including investigation support, escalation, documentation, and communication with VA security operations and CISO teams.
Oddball believes that the best products are built when companies understand and value the things they are working on. They value learning and growth and the ability to make a big impact at a small company.
Lead cross-functional program teams delivering SaaS productivity solutions, ensuring on-time, within-scope delivery aligned to customer outcomes.
Manage program complexity, shaping strategic direction of software delivery and proactively mitigating risks across multiple customer programs.
Build and coach a high-performing management team, mentoring new managers, developing program talent, and fostering a culture of ownership and continuous improvement.
Axon is on a mission to Protect Life, creating an ecosystem of devices and cloud software to address safety and justice issues. They connect with candor and care, seeking diverse perspectives and offering a fast-paced, challenging, and meaningful work environment.
Own and lead the delivery of large, multi-quarter Application Security and Engineering initiatives.
Improve existing complex application security architectures and provide guidance for securing AI-based workflows.
Proactively identify emerging industry threats and act as Incident Commander for large-scale security incidents.
Wrapbook provides a unified payroll platform that seamlessly connects your entire team in one place. It empowers production teams to manage projects, pay cast and crew, track expenses, and generate data-driven insights. With a growing team of 250+ people across the USA and Canada, Wrapbook is backed by top-tier investors and has raised $130M.
Partner with Enterprise AEs and AMs to secure the technical win on Vanta’s most complex, strategic deals.
Own and execute the Solution Validation (Managed Pilot) process to prove technical feasibility and eliminate risk.
Act as the ‘Voice of the CISO’ by consolidating strategic product gaps and collaborating with Product and Engineering teams to influence product enhancements.
Vanta helps businesses earn and prove trust by enabling companies to practice better security and prove it with ease. They have a kind and talented team, and while some have prior security experience, many have been successful without it.