Tech Stack

Description

You will lead compliance readiness for NIS2 and manage alignment across frameworks like PCI DSS, ISO/SOC, and EU AI Act. You'll plan internal controls, coordinate external audits, drive remediation, and enhance GRC maturity across international teams.

Requirements

• 3+ years in compliance services focusing on ITGC, SOC 2, ISO 27001, PCI DSS, NIS2
• Deep knowledge of GDPR and CCPA/CPRA
• Proven ability to map complex regulations to system implementations and security frameworks
• Experience with third-party risk management and data privacy operations
• Industry certifications such as CISA, CISM, or CISSP highly regarded

Responsibilities

• Lead NIS2 compliance readiness and alignment across PCI DSS, CSRD, ISO/SOC, EU AI Act
• Plan and execute internal control assessments and coordinate external compliance audits
• Translate regulatory requirements into practical controls and drive cross-functional implementation
• Manage remediation processes, tracking findings and deadlines, and provide status reports
• Enhance GRC maturity through continuous monitoring, documentation, and technical guidance