Description

You will lead compliance programs for DORA, NIS2, and PCI DSS, ensuring regulatory requirements are translated into actionable controls and embedded into operations. You'll work cross-functionally with Security, IT, Legal, and executive leadership to maintain readiness and resilience in a fast-paced AI cloud environment.

Requirements

• 5+ years in Governance, Risk, and Compliance (GRC), Information Security, or Regulatory Compliance
• Hands-on experience with DORA, NIS2, or PCI DSS compliance programs
• Experience working with external auditors, regulators, or QSAs
• Ability to translate regulatory language into operational controls
• Excellent communication skills with executive stakeholders

Responsibilities

• Develop and maintain policies and procedures for GRC framework
• Lead end-to-end DORA and NIS2 compliance programs
• Lead internal and external audits for DORA, NIS2, and PCI DSS
• Define and track ICT risk management controls aligned with DORA
• Support vendor due diligence related to regulatory requirements