🛠 Tech Stack

💼 About This Role

You'll conduct control testing and walkthroughs across IT general controls and compliance frameworks like ISO 27001, SOC 2, and PCI-DSS. You'll partner with cross-functional teams to improve control processes and support third-party vendor assessments. This role offers broad exposure across Security, Engineering, and Operations teams.

🎯 What You'll Do

• Conduct control walkthroughs and testing for IT general and application controls
• Partner with teams to design and improve control processes and documentation
• Support third-party vendor assessments against security and privacy standards
• Develop and maintain Information Security Policies and Standards
• Prepare internal status reports on control findings and remediation progress

📋 Requirements

• 1-3 years experience in security audit, IT audit, or risk management
• Working knowledge of NIST, ISO 27001, SOC 2, or PCI-DSS frameworks
• Familiarity with cloud platforms like AWS, Azure, or GCP
• Strong analytical and technical problem-solving skills

✨ Nice to Have

• FedRAMP compliance experience
• Professional certifications such as CISA, CISSP, or AWS
• Experience at a Big 4 public accounting firm

🎁 Benefits & Perks

• 🏥 100% employer-paid medical insurance
• 🏖️ Generous PTO plus paid sick time, parental leave, holidays, and volunteer days
• 📈 RSU stock grants
• 🎓 Professional development and training opportunities
• 📱 Monthly cell phone stipend

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Screen· 30 min
2. 2Hiring Manager Interview· 45 min
3. 3Technical Interview· 60 min