🛠 Tech Stack

💼 About This Role

You'll own the security assurance program at a fast-growing SaaS platform, refining customer trust and scaling compliance-as-code. Your work ensures audit-readiness is continuous, not periodic.

🎯 What You'll Do

• Own continuous improvement of control environment and ISMS.
• Handle complex security questionnaire follow-ups and assurance calls.
• Expand compliance-as-code into continuous audit monitoring.
• Drive AI security governance and ISO 42001 maturity.

📋 Requirements

• 3+ years in information security with GRC focus.
• Working knowledge of ISO 27001.
• Working knowledge of SOC 2 or C5.
• Ability to translate security controls into business language.

✨ Nice to Have

• Experience with Vanta, Orca Security, or Aikido.
• Familiarity with EU AI Act or NIS2.
• Knowledge of compliance-as-code and GitHub Actions.

🎁 Benefits & Perks

• 🏖️ Unlimited PTO
• 💻 Remote-friendly culture
• 📈 Access to best-in-class AI tools (Claude, OpenAI, Gemini)
• 🏆 Influence on product security roadmap

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter screen· 30 min
2. 2Hiring manager interview· 45 min
3. 3Technical/behavioral interview· 60 min