About the Role
This position supports the development and maintenance of governance frameworks, risk management processes, and compliance programs within the information security domain, working cross-functionally to ensure organizational adherence to regulatory and internal requirements.
Responsibilities
- Support the implementation and upkeep of information security governance frameworks
- Assist in identifying, evaluating, and reporting on information security risks
- Contribute to compliance efforts related to industry regulations and standards
- Maintain documentation for policies, procedures, and control assessments
- Collaborate with internal teams to ensure security controls are effectively applied
- Participate in internal and external audits by providing required evidence
- Track and report on compliance metrics and key risk indicators
- Help coordinate responses to security findings and remediation plans
- Stay current with evolving cybersecurity threats and regulatory changes
- Support third-party risk assessment processes
- Facilitate security awareness and training initiatives
- Assist in the management of security policies and standards
- Conduct regular reviews of access controls and user permissions
- Contribute to business continuity and incident response planning
- Work with legal and compliance teams on data protection requirements
- Prepare reports for management and governance committees
- Ensure alignment between security practices and corporate objectives
- Support certification efforts such as ISO 27001 or SOC 2
- Analyze gaps in current controls and recommend improvements
- Maintain risk registers and update risk treatment plans
- Assist in the evaluation of new technologies from a security perspective
- Promote a risk-aware culture across departments
- Coordinate with IT and security operations for control validation
- Manage documentation workflows for compliance artifacts
- Provide input on security aspects of contracts and vendor agreements
Compensation
Competitive salary and benefits package
Work Arrangement
Remote
Team
Part of the global Information Security team focused on governance, risk management, and compliance initiatives
Why Join Us
- Opportunity to contribute to a globally distributed team focused on protecting sensitive information
- Supportive environment that values professional development and continuous learning
- Work on meaningful initiatives that directly impact organizational security posture
Remote Work Policy
- This role is fully remote with no requirement for office presence
- Collaboration primarily occurs through digital platforms and scheduled virtual meetings
- Candidates must have a reliable internet connection and a secure home office setup
Not available
