Description

You will bridge compliance requirements and high-velocity engineering by owning baseline technology controls, automating evidence collection, and designing scalable governance processes. You'll translate risk requirements into practical controls, track remediation, and improve workflows to support audit readiness and operational resilience.

Requirements

• 12+ years in technical compliance, security, or risk roles with audit or certification delivery experience
• End-to-end technical audit certification program experience (scoping, control mapping, evidence collection, remediation, auditor engagement)
• Proven track record working with engineering teams to implement and operationalize controls
• Hands-on experience with tooling/automation for evidence collection or compliance reporting
• Strong program and project management skills

Responsibilities

• Implement and operate controls and audit programs (ISO, SOC, PCI, etc.) in complex distributed environments
• Design and implement baseline technology controls aligned with compliance and security requirements
• Collaborate with infrastructure, platform, SRE, and product engineering teams to deliver technical controls and automation
• Build scalable tools and frameworks to reduce manual evidence collection and audit testing overhead
• Lead cross-organizational programs and influence senior engineers and executives to embed compliance in engineering roadmaps