Iso27001 Jobs

Senior technology audit leader needed to design and execute a risk-based IT audit program for Guggenheim Securities, partnering with senior stakeholders to assess controls across cybersecurity, cloud, applications and third-party risk.

Join Cartesia as a Security Engineer to architect and operate cloud-native security and compliance programs while partnering closely with product and platform teams.

Customer-Centric

Mission Driven

Inclusive & Diverse

Rise from Within

Diversity of Opinions

Work/Life Harmony

Growth & Learning

Transparent & Candid

Medical Insurance

Paid Time-Off

Maternity Leave

Mental Health Resources

Equity

Child Care stipend

Paternity Leave

WFH Reimbursements

Flex-Friendly

Dental Insurance

Vision Insurance

Life insurance

Health Savings Account (HSA)

Flexible Spending Account (FSA)

401K Matching

Military leave

NVIDIA is hiring an experienced Internal Audit Manager (IT & Security) to lead technology and cybersecurity audits, deliver actionable risk insights, and partner with senior leaders to improve controls and compliance.

A.C.Coy Company seeks a seasoned IT Security Architect to lead secure architecture design and risk mitigation efforts across enterprise and cloud environments.

Adtalem seeks an IT General Controls Analyst to support IT Risk Management by testing ITGCs, coordinating remediation with IT teams and auditors, and strengthening SOX and compliance controls.

Inclusive & Diverse

Growth & Learning

Customer-Centric

Collaboration over Competition

Medical Insurance

Maternity Leave

Flex-Friendly

401K Matching

Lead Vanta’s reporting and enterprise prioritization products to simplify security and compliance for customers while shaping product strategy and team culture.

Serve Robotics seeks a Senior GRC Analyst to lead governance, risk, and compliance efforts—managing frameworks, audits, vendor risk, and security awareness to mature controls for its Los Angeles operations.

Procore is hiring a Staff Technical Program Manager to lead and deliver enterprise Technology GRC programs that strengthen security posture and ensure compliance across the organization.

Foresight Diagnostics is hiring a Senior Director, Information Technology to lead IT operations, security, and digital transformation for its Boulder-based, regulated diagnostics organization.

Marvell seeks a Security Risk and Compliance Analyst to support pen tests and red teaming, manage ISMS and controls, and drive remediation and security awareness across the organization.

Coupa is hiring a senior Enterprise Security Architect to lead design and implementation of secure architectures, risk assessments, and fraud prevention across cloud and enterprise systems.

Databricks is hiring a U.S. citizen Team Lead, Security Risk Management to lead and operationalize the company's security risk program across a global, cloud-native environment.

Senior DevSecOps Engineer needed to lead cloud security, automation, and secure CI/CD practices for an innovative Web3 platform operating across AWS, Azure, and GCP.

Inclusive & Diverse

Collaboration over Competition

Growth & Learning

Mission Driven

Transparent & Candid

Coinbase is hiring a Senior Analyst for Technology Risk & Controls to advance continuous controls monitoring, automate testing, and strengthen technology risk posture across the platform.

Experienced GRC leader wanted to drive and scale Oura's security and compliance programs (SOC 2, HIPAA, HITRUST, ISO, NIST, FedRAMP) while partnering across Product, Engineering, and Privacy in a remote U.S. role.

Lead Boeing’s Network and Security Operations team to deliver highly reliable, secure, and scalable global network services across data centers, cloud, and enterprise environments.

Lead Boeing’s Network and Security Operations efforts to maximize availability, security, and operational excellence across global LAN/WAN, cloud, and data center environments.

BGM is hiring a Commercial Counsel (SaaS) to lead enterprise contract negotiations, privacy/security responses, and contract operations to support scalable revenue growth.

BGM is hiring a Commercial Counsel to lead SaaS contracting, privacy/compliance, and legal ops to accelerate enterprise deals and enable scalable commercial growth.

Experienced Application Security Engineer needed to drive AppSec integration across development and cloud platforms while performing assessments, secure code reviews, and automation for a fast-moving SaaS environment.

Lead and scale Humana's product security architecture and threat modeling efforts by managing a team of security architects and driving application security strategy across the organization.

Major League Soccer seeks an experienced Chief Information Security Officer to lead privacy, compliance, and cybersecurity across its customer platforms and digital ecosystem.

Horizon3.ai seeks a Senior Compliance Analyst to lead SOC 2, privacy, and third-party risk programs for its remote-first cybersecurity SaaS platform.

Palo Alto Networks is hiring a Senior Privacy Manager to lead privacy program operations, DSAR lifecycle management, and cross-functional privacy initiatives for its Global Legal team.

CFGI is hiring a Director of Cybersecurity to lead client advisory engagements in risk, compliance, governance, and third-party risk management, with a strong focus on EU/German data privacy and cybersecurity regulations.

Bloomlife is hiring an IT and Technical Support Manager to own US IT infrastructure, ensure HIPAA/SOC2-level compliance, and deliver second-line support for users and providers.

Velera is hiring a remote Information Security Analyst to monitor threats, investigate incidents, perform vulnerability assessments, and maintain enterprise security tooling.

Palo Alto Networks is hiring a Senior Privacy Manager to lead privacy program operations, DSAR management, vendor privacy projects, and privacy certifications across the enterprise.

Experienced CISO needed to develop and run Credit Genie's security strategy, protecting customer data and enabling safe product innovation across its AI-powered fintech platform.

HUB International is hiring a Security Operations Analyst to lead incident response and strengthen security operations across cloud, endpoint, and network environments from its Chicago team.

Tines is hiring a Senior GRC Analyst to lead FedRAMP efforts, maintain SOC 2 compliance, and mature vendor and risk processes at a growing, remote-first security-focused SaaS company.

Zapier is hiring an Infrastructure Security Engineer to strengthen cloud infrastructure security, improve IaC and vulnerability management, and enable secure, scalable developer velocity in a remote-first environment.

Dare to be Different

Diversity of Opinions

Inclusive & Diverse

Collaboration over Competition

Fast-Paced

Growth & Learning

Lead WRITER's GRC strategy to operationalize AI-era compliance across SOC2, ISO, GDPR and emerging AI regulations while enabling safe, fast innovation.

Lead Plus Power’s enterprise and operational cybersecurity efforts as Principal Cybersecurity Engineer, building controls, managing compliance and TPRM, and protecting IT/OT/data environments across a 10+ GW energy storage portfolio.

Experienced technology risk leader needed to lead enterprise services tech risk strategy, assessments, and controls at Capital One's McLean campus.

Lead technology risk management initiatives at Capital One's Enterprise Services as a Director driving innovation and strong risk frameworks.