What you're looking for:
- 5+ years of experience in GRC, compliance, or audit.
- Deep hands-on experience with SOC 2 Type II; strong working knowledge of ISO 27001 and related standards.
- Strong written and verbal communication skills; you've personally authored control narratives, audit-ready documentation, and compliance reports.
At 1Password, we build with AI:
- Active and thoughtful AI user: You've used AI tools to meaningfully speed up audit prep.
- Automation spotter: You identify manual, repetitive GRC processes that can be AI-assisted or automated.
- You understand the accuracy tradeoffs — when AI-generated control narratives need careful human validation.
What you can expect:
- Own and lead technical audit walkthroughs across SOC 2 Type II, ISO 27001/27017/27018, and ISO 27701 programs.
- Define and maintain the evidence library.
- Execute deep-dive control testing and gap analysis across the Unified Control Framework (UCF).
What we offer:
- Competitive health benefits
- Generous PTO policy
- Free 1Password account
1Password
1Password is building the foundation for a safe, productive digital future. They ensure every identity is authentic, every application sign-in is secure, and every device is trusted. Over 180,000 businesses trust 1Password. We prioritize collaboration, clear and transparent communication, receptiveness to feedback.