Tech Stack

Description

You will own and maintain the ISMS documentation library, coordinate audits (ISO 27001, SOC 2), manage corrective actions, and support the ISO 42001 AI management system implementation. This role involves liaising with technical teams, auditors, and senior leadership to ensure information security excellence.

Requirements

• 5-8 years in information security, GRC, or IT audit
• Hands-on experience with ISO 27001 ISMS implementation and certification
• Direct involvement in at least one SOC 2 Type II audit cycle
• Proficiency in document management tools (SharePoint, Confluence)
• Bachelor's degree in IT, Computer Science, Cybersecurity or related field

Responsibilities

• Own and maintain ISMS documentation library including SoA, policies, procedures, standards, and work instructions
• Conduct document reviews, identify gaps against ISO 27001 Annex A, and coordinate updates with control owners
• Track corrective action and CAPA register, ensure timely resolution of non-conformities
• Coordinate internal ISMS audits and annual SOC 2 Type II audit, manage evidence collection and auditor liaison
• Support ISO 42001 implementation, develop AI-specific documentation and training content