Vanta
Vanta secures the internet and protects consumer data, empowering companies to practice better security and achieve continuous monitoring and verification. Fou…
Director of Product, GRC
United States
- Skills: Product Strategy, Governance, Risk Management, Compliance, B2B SaaS, Team Management, Stakeholder Collaboration, Product Vision, Business Metrics, Security Products
- Experience: 12+ years of product management experience; 5+ years managing teams
- Type: Full-time
- Salary: Industry-competitive compensation
CFGI
CFGI is a Risk Advisory firm that focuses on delivering exceptional IT audit and compliance services to Fortune 500, mid-cap, and start-up companies.
Senior Manager - IT Consulting
United States
- Skills: IT Internal Audit, SOX implementation, business process improvement, compliance assessments, IT controls testing, project plans, risk assessments, staff development, business development, project management
- Experience: Eight + years of experience in public accounting and/or industry performing IT audit, systems implementations, or Information Security
- Type: Full-time
PayPay
PayPay is a fintech company that has surpassed 65 million users since its service launch in 2018, comprising a diverse membership from approximately 50 countri…
Internal Control Department Role
United States
- Skills: internal controls, IT general controls (ITGC), IT application controls (ITAC), SOX compliance, system audits, technology risk assessment, collaboration, stakeholder management, project delivery, problem-solving
- Experience: 3 years or more in auditing firms or consulting firms with experience in system audits, IT general controls (ITGC), and related areas
- Type: Full-time
- Salary: Annual salary (including fixed overtime)
Smartling
Smartling was founded 14 years ago to make localization and translation seamless. Today, Smartling is profitable and backed by Battery Ventures, a global techn…
Information Security Compliance Analyst
United States
- Skills: PCI-DSS, SOC 2, HIPAA, HITRUST, ISO 27001, security audits, compliance programs, risk assessments, security policies, vulnerability assessment tools
- Experience: 3+ years proven experience in IT security, compliance, or a related field
- Type: Full-time
- Salary: competitive salary
Vonage
Vonage is a global cloud communications leader that helps businesses accelerate their digital transformation through our fully programmable Unified Communicati…
CFIUS Vendor Compliance Expert
United States
- Skills: CFIUS, Vendor Compliance, Data Analytic Tools, Vendor Risk Management, Procurement Sourcing, OSINT Research, Jira, Salesforce, Compliance, Audit
- Experience: 5+ years experience in supporting, managing, or assessing compliance against an enterprise-wide vendor management program or procurement sourcing
- Type: Full-time
Wrike
Wrike is the most powerful work management platform. Built for teams and organizations looking to collaborate, create, and exceed every day, Wrike brings every…
Compliance Manager
United States
- Skills: ISO 27001, SOC 2, compliance, security training, risk management, audits, security awareness training, policy development, communication skills, third-party vendor assessments
- Experience: 2-3+ years of experience in information security compliance, preferably in technical audits.
Toku
Toku is the leading provider of compliance infrastructure for crypto companies, enabling them to pay employees in tokens and stablecoins while staying complian…
Compliance and Privacy Officer
United States
- Skills: compliance, GDPR, SOC2, ISO 27001, privacy, security programs, regulatory standards, crypto industry, data protection, strategic leadership
- Experience: Technical expertise and strategic leadership in compliance and privacy
Wpromote
Wpromote is recognized as a Best Place to Work and one of Adweek’s Fastest Growing Digital Agencies, focused on enhancing marketing capabilities and strategies.
IT Security Analyst
United States
- Skills: IT Security, SOC 2 compliance, CIS CSC controls, security evaluation, penetration test remediation, security auditing, digital marketing, data protection, application security, remote work culture
- Experience: Experience in SOC 2 audits, application security best practices, and security program assessments.
- Type: Full-time
- Salary: $85,000 - $110,000
Docker
Docker is a remote first company with employees across Europe, APAC and the Americas that simplifies the lives of developers who are making world-changing apps…
Senior Security GRC Engineer
United States
- Skills: GRC strategies, automated evidence gathering, security compliance, vulnerability management, security metrics, risk assessment, ISO 27001, cybersecurity frameworks, project management, information security technologies
- Experience: 6 to 8 years of experience in Information Technology, Security Engineering, Governance, Risk and Compliance
- Type: Full-time
Remote
Remote is solving global remote organizations’ biggest challenge: employing anyone anywhere compliantly. We make it possible for businesses big and small to em…
Governance, Risk and Compliance (GRC) Specialist
United States
- Skills: Governance, Risk, Compliance, Security, Analytical skills, Interpersonal skills, Process improvements, Security standards, Fluent English, Continuous improvement
- Experience: Proven experience in GRC functions - good understanding of GRC functions.
- Type: Full-time
- Salary: USD 32,300 to USD 72,700
Alma
Alma is on a mission to simplify access to high-quality, affordable mental health care. We do this by making it easy and financially rewarding for therapists t…
Senior Security Governance Risk & Compliance (GRC) Analyst
United States
- Skills: Governance Risk Compliance, Security Awareness Program, SOC 2 Audits, HITRUST Certifications, Vendor Risk Program, Risk Assessments, Security Policies, Cybersecurity, NIST CSF, Continuous Compliance
- Experience: 5+ years of work experience in Information Security
Smartsheet
Smartsheet is a tech company with a human story to tell. We’re here to empower teams to manage projects, automate workflows, and rapidly build new secure solut…
Sr. Compliance Analyst II
United States
- Skills: compliance, risk management, automation, project management, security best practices, compliance frameworks, analytical skills, communication, problem-solving, mentorship
- Experience: 5+ years of experience in IT compliance, information security, or related fields.
- Salary: $135,000 - $180,000 USD
GXO Logistics
GXO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most e…
Senior Manager, IT SOX Compliance
United States
- Skills: IT General Controls, IT Application Controls, SOX compliance, risk assessment, control evaluation, remediation, IT infrastructure, control testing, team management, compliance
- Experience: Minimum of 8 years of IT audit, IT compliance, or IT SOX experience, with at least 3 years in a leadership role
- Type: Hybrid
Datadog
Datadog is a global SaaS business, delivering a rare combination of growth and profitability. We are on a mission to break down silos and solve complexity in t…
Privacy Counsel
United States
- Skills: Privacy, Data protection, AI governance, Compliance, Cybersecurity, GDPR, HIPAA, Data subject requests, Privacy risk assessments, Legal contracts
- Experience: 3+ years of relevant privacy experience across diverse regulatory landscapes
- Type: Hybrid
- Salary: $170,000 — $225,000 USD
Anchorage Digital
Anchorage Digital is a crypto platform that enables institutions to participate in digital assets through custody, staking, trading, governance, settlement, an…
GRC Analyst
United States
- Skills: GRC Process Management, IT Risk Management, Security Risk Assessments, Continuous Monitoring, cross-functional, stakeholders, compliance program, IT risk, project management, strategic planning
Synack
Synack’s Penetration Testing as a Service platform manages customers’ attack surfaces by discovering new assets, pentesting for critical vulnerabilities and ga…
Technical Account Manager
United States
- Skills: penetration testing, vulnerability management, risk management, consultative communication, technical expertise, customer success, scripting languages, cybersecurity certifications, PCI, ISO 27001
- Salary: $80,000 - $110,000
PSI
IT Infrastructure Services Lead
United States
- Skills: IT Infrastructure, security controls, cloud, disaster recovery, business continuity, automation, network monitoring, ISO 27001, Information Security, performance management
Spotify
Technology Risk and Controls Program Manager
United States
- Skills: technology risk, controls program, financial engineering, risk initiatives, controls framework, audit cycle, IT control environment, Internal Controls over Financial Reporting, ICFR, Sarbanes-Oxley
SentinelOne
The Industry Leader in Autonomous Cybersecurity
Chief Information Security Officer (CISO)
United States
- Skills: cybersecurity, strategy, assessing, planning, threat landscape, incident response, data security, risk management, compliance, leadership
- Type: Full-time
PointClickCare
PointClickCare is a leading North American healthcare technology platform enabling meaningful care collaboration and real‐time patient insights. For over 20 ye…
Legal and Compliance Associate
United States
- Skills: privacy, compliance, HIPAA, PHI, data use, information security, policy, training, legislation, regulations
Vanta
Vanta's mission is to secure the internet and protect consumer data by enabling companies to practice better security and prove it with ease. They empower orga…
Subject Matter Expert, GRC
United States
- Skills: GRC, SOC 2, ISO 27001, security features, compliance frameworks, customer relationships, cross-functional teams, security best practices, cloud infrastructure, cybersecurity audit
- Experience: Experience working with security and privacy frameworks, including SOC2, ISO 27001, ISO 27701, FedRAMP, HIPAA, GDPR, CCPA.
- Type: Full-time
Bloomreach
Bloomreach is building the world’s premier agentic platform for personalization, revolutionizing how businesses connect with their customers. They provide AI a…
Security & Compliance Analyst
United States
- Skills: compliance, GRC, risk management, ISO 27001, SOC 2, controls testing, auditors, internal assessments, cloud technologies, Drata GRC
- Experience: 1-3 years
- Type: Full-time
- Salary: starting at 2,500 EUR Gross monthly
Vanta
Vanta is a company that helps businesses secure the internet and protect consumer data. Founded in 2018, Vanta focuses on automating security monitoring for co…
Subject Matter Expert, GRC
United States
- Skills: Security, Compliance, SOC 2, ISO 27001, GRC, Trust Management, Customer Success, Risk Management, Cybersecurity, Sales Engineering
- Type: Full-time
OnePay
OnePay is a consumer financial services app with an exceedingly simple mission: to help people achieve financial progress.
GRC Engineer in Risk and Assurance
United States
- Skills: third-party risk management, vulnerability management, cloud security, data governance, audit support, NIST, SOC 2, CISSP, cloud security assessments, risk management
- Experience: 3-7 years
- Type: Full-time
- Salary: $143,000 - $175,000
Elastic
Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale — unleashing the potential of busin…
IT Internal Audit Analyst
United States
- Skills: IT SOX compliance, internal audits, IT General Controls, IT Application Controls, audit scoping, control gaps, data analytics, continuous improvement, external auditors, operational audits
- Experience: 2+ years experience in IT Internal Audit and/or SOX compliance.
- Type: Full-time
- Salary: $74,200—$117,400 USD
The Hershey Company
Senior IT Audit Analyst
United States
- Skills: IT Audit, SOX Compliance, IT General Controls, Application Controls, Cybersecurity, Risk Assessment, Internal Audit, Data Analytics, Vulnerability Assessments, Third-party Risk Assessments
- Experience: Minimum of 5 years direct experience in IT Audit
ABBYY
ABBYY is a technology company with more than 35 years of experience in the market, recognized for innovation in document processing and AI technologies.
Senior Analyst
United States
- Skills: Governance Framework, Risk Assessment, Compliance Management, Policy Development, Audit Support, Training and Awareness, Reporting and Metrics, Continuous Improvement, Risk Management, Information Security
- Experience: 5+ years in information security, risk management, or compliance
- Type: Hybrid
Coalfire
Coalfire is on a mission to make the world a safer place by solving our clients’ hardest cybersecurity challenges. We work at the cutting edge of technology to…
Security Consultant
United States
- Skills: cybersecurity, security assessments, compliance, regulatory standards, audit, framework requirements, reports, project management, problem-solving, client firms
Ceribell, Inc.
Ceribell is a medical technology company focused on transforming the diagnosis and management of patients with serious neurological conditions. The Ceribell Sy…
Senior Security Engineer- FedRAMP
United States
- Skills: Security Assessments, Risk Management, Control Implementation, Continuous Monitoring, Incident Response, Compliance, FedRAMP, Security Tools, Technical Expertise, Project Management
- Experience: Five or more years’ work experience as a System Security Engineer or related position
- Salary: $150,000 - $175,000 USD
CyberSheath Services International LLC
CyberSheath is a rapidly growing Managed Services Provider primarily focused on providing Cybersecurity services to the Defense Industrial Base (DIB).
Cybersecurity & Compliance Analyst
United States
- Skills: Cybersecurity, Compliance, DFARS, NIST 800-171, CMMC, Risk Management, Incident Response, Documentation, Audits, Client Communication
- Type: Full-time
- Salary: $110,000 - $130,000 USD
Insight Assurance
Insight Assurance is a security and compliance firm trusted by over 1200 organizations for their SOC 2, PCI DSS, ISO 27001, and HIPAA audit needs. Insight Assu…
International CMMC CCP (NIST, HITRUST) - NATO/LATAM
United States
- Skills: compliance auditor, CMMC Certified Professional, NIST, cybersecurity practices, assessment plan, risk assessment, reporting findings, stakeholder relationships, GRC and compliance automation tools, communication skills
- Experience: At least 1-3 years of experience performing IT audit engagements at a Big 4 or other audit/consulting firm.
Ketryx
Ketryx is saving and improving lives by making medical software safe and reliable. We empower software teams building medical applications to create safe, secu…
AI, Digital, and Cyber Compliance
United States
- Skills: quality, cybersecurity, medical devices, AI, FDA, SaaS, software development, vulnerability monitoring, computer science, regulatory strategies
- Experience: 5 years of working in a cybersecurity role on a team building and shipping medical devices.
- Type: Contract
LastPass
LastPass is a leader in password and identity management, making it easier to log into life and work. Trusted by 100,000 businesses and millions of users, Last…
Principal GRC Specialist
United States
- Skills: Governance, Risk, Compliance, Audit, Security, Privacy, NIST 800-53, FedRAMP, SOC 2, CMMC
- Experience: Expert-level knowledge of security and privacy-related standards and frameworks.
- Type: Remote
- Salary: $150,000 - $170,000 USD
SGS
SGS is the world's leading inspection, verification, testing and certification company.
Senior Certification Auditor
United States
- Skills: audit, IATF 16949, SGS Certification Management System, training, ISO 9001:2015, teams of auditors, registration recommendation, credential maintenance, internal standards, accreditation
Remote
Remote is solving global remote organizations’ biggest challenge: employing anyone anywhere compliantly. We make it possible for businesses big and small to em…
Governance, Risk and Compliance (GRC) Specialist
United States
- Skills: Governance, Risk, Compliance, Security, Analytical skills, Problem-solving, Team oriented, Process improvements, Security standards, Information Security Policies
- Experience: Proven experience in GRC functions
- Type: Full-time
- Salary: USD 32,300 to USD 72,700
Setpoint
Setpoint provides purpose-built capital and technology to asset-backed borrowers and lenders. Our platform is the funding operating system for originators: it …
Director, Security and IT
United States
- Skills: security operations, AWS security, security architecture, incident response, vulnerability management, security frameworks, SOC2, GDPR, CCPA, cross-functional collaboration
- Experience: 7+ years of security engineering experience
- Salary: $150,000 - $200,000
A-LIGN
A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-…
Senior IT Auditor – ISO 27001
United States
- Skills: ISO 27001, audits, information security, risk assessment, client engagement, project management, communication, reporting, cybersecurity compliance, remote work
- Experience: At least 3 years of experience performing information system audits or information security reviews specific to ISO
- Type: Full-Time
Pax8
Pax8 is the leading cloud-based technology marketplace, simplifying the cloud journey for our partners by integrating technology, business intelligence and pro…
Security Program Manager, Academy
United States
- Skills: Security, ITSPs, SMB, Content Creation, Risk Reduction, Customer Relationships, Collaboration, Training, Solutions, Thought Leadership
- Experience: Substantial Security experience required ideally in the SMB marketplace
- Type: Full-time
- Salary: $101,000 - $126,000
ASSYSTEM
Assystem is an international company with one mission: accelerate the energy transition around the world. Every day, our 6,500 switchers located in 12 countrie…
Cyber Security Officer
United States
- Skills: Cyber Security, Information Security, Compliance, Risk Management, Incident Management, Training, Audits, ISO 27001, NIST, KSA regulations
- Type: Full-time
Ziff Davis
Ziff Davis (NASDAQ: ZD) is a vertically focused digital media and internet company whose portfolio includes leading brands in technology, shopping, gaming and …
Senior Information Technology Auditor
United States
- Skills: IT Audits, Risk Assessment, Compliance, IT Governance, Policy Review, Audit Reporting, Mentorship, Certification, IT frameworks, Financial reporting
- Experience: 4+ years of IT audit or IT risk management experience
- Type: Full-time
- Salary: $95,000 - $115,000
Trunk Tools, Inc.
At Trunk Tools, we are tackling the massive $13 trillion+ construction industry. We’re an exceptional team of serial entrepreneurs, brought together by our sha…
Part-Time Contract SOC 2 & Security Compliance Engineer
United States
- Skills: SOC 2 Compliance, Security Compliance, Audit Support, Process Documentation, Continuous Improvement, Security Questionnaires, Compliance Expertise, Communication Skills, Audit Processes, Proactive Problem Solver
- Experience: 3-5 years of experience in security compliance roles, with a strong focus on SOC 2 compliance.
- Type: Part-time Contract
- Salary: Competitive hourly rate, commensurate with experience.
Wrapbook
Wrapbook is a smart, intuitive platform that makes production payroll and accounting easier, faster, and more secure. We provide a unified payroll platform tha…
Director, Security Engineering and IT
United States
- Skills: security program, cloud security, infrastructure security, incident response, business continuity, risk tradeoffs, compliance implementation, security metrics, security culture, security value
- Experience: 8+ years in security roles, including technical leadership
- Type: Full-time
- Salary: $216K – $294.3K
Paxos
Paxos is on a mission to open the world's financial system to everyone by enabling the instant movement of any asset, in a trustworthy way. They build blockcha…
Third Party Risk Management Program Lead
United States
- Skills: risk management, compliance, third-party risk, technology risk, vendor oversight, regulatory frameworks, SOC 2, ISO 27001, cybersecurity, data privacy
- Experience: 5+ years of experience in risk management, compliance, or audit, with at least 2 years focused on third-party risk, technology risk, or vendor oversight.
- Type: Full-time
- Salary: $147,016 - $172,961 USD
Contact Government Services, LLC
Contact Government Services (CGS) strives to simplify and enhance government bureaucracy through the optimization of human, technical, and financial resources.…
Sr. Information Systems Security Officer (ISSO)
United States
- Skills: Information Systems Security Officer, cybersecurity, security assessment, Risk Management Framework (RMF), National Institute of Standards and Technology (NIST), Authorization to Operate (ATO), vulnerability scanning, risk registry, security guidance, compliance
- Experience: Minimum of five (5) years experience as an Information Assurance (IA) Analyst, ISSE, ISSO, or similar role.
- Type: Full-time
- Salary: $118,560 - $171,253.33 a year
DeleteMe
DeleteMe is the online privacy company that makes easy-to-use tools for consumers and businesses to control what personal information companies and third parti…
Legal Researcher
United States
- Skills: Privacy, Legal Research, Regulatory, GDPR, CCPA, Compliance, Documentation, Data Privacy, Consumer Protection, Policy Recommendations
- Experience: Experience conducting legal research on privacy laws, regulations, and frameworks (eg. GDPR, and CCPA).
- Type: Contract
- Salary: $21 - $25 an hour
Granicus
Granicus is driven by the excitement of building, implementing, and maintaining technology that is transforming the Govtech industry by bringing governments an…
Manager, Information Security & Compliance (CJIS)
United States
- Skills: CJIS compliance, information security, cybersecurity, compliance audits, ISO 27001, SOC 2, FISMA, HIPAA, Cyber Essentials, Third Party Risk Management
- Experience: 7+ years in information security with at least 3 years managing an information security team; 5+ years managing CJIS compliance programs and audits.
- Type: Full-time
- Salary: $160,000 - $180,000 a year
Lindblad Expeditions
Lindblad Expeditions is a true pioneer in Expedition Travel, committed to providing unique travel experiences to some of the world’s most remote locations.
Director, IT Operations & Security
United States
- Skills: IT Operations, Security, Cybersecurity, Cloud Management, Data Governance, Project Management, Leadership, Vendor Relationships, Compliance, Innovation
- Experience: 3+ years as IT Operations Director
- Type: Full-time
- Salary: $130,000 - $150,000 a year
Tevora
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, a…
Sr. Consultant - SSF Assessor
United States
- Skills: PCI QSA, Secure Software Framework, Payment Security, Compliance, Secure Software Assessor Certification, Testing Procedures, Standard Reports, Technical Writing, Client Presentations, Cybersecurity
- Type: Full-Time
- Salary: $180,000 - $200,000 a year DOE
Airship
Airship is trusted by world’s leading brands such as Alaska Airlines, BBC and The Home Depot to drive revenue growth and customer loyalty with exceptional cros…
Information Security Architect
United States
- Skills: Information Security, cybersecurity, compliance, SOC2 audits, security controls, technical risk, public cloud, GCP, scripting languages, data protection
- Experience: 4-6 years experience in the field of Information Security
- Type: Full-time
- Salary: $123,000-$155,000 USD per year
Patreon
Patreon is a media and community platform where creators give their biggest fans access to exclusive work and experiences. Our goal is to fund the creative cla…
Security Engineer
United States
- Skills: Security Engineering, Governance, Risk, and Compliance, Cloud Security, Incident Response, Risk Management, Automation, Threat Detection, Cybersecurity, Compliance, Security Policies
- Experience: Minimum of 4 years of combined experience in Security Engineering, GRC, or related roles.
- Type: Full-time
- Salary: $160.7K – $241.5K
Health-E Commerce
Chief Information Security Officer (CISO)
United States
- Skills: Information Security, Cyber Security, Regulatory Compliance, Incident Response, Risk Management, Security Governance, Threat Intelligence, Vulnerability Assessment, Security Operations Center (SOC), Data Protection
- Experience: 15+ years of experience with Cyber Security
- Salary: $150,000 - 180,000
Safe Security
At SAFE Security, our vision is to be the Champions of a Safer Digital Future and the Catalysts of Change. We believe in empowering individuals and teams with …
Risk Advisor
United States
- Skills: risk management, information security, IT audit, customer success, consulting, cyber security, CISSP, quantitative risk analysis, presentation skills, communication skills
- Experience: 5-7 years
- Type: Full-time
LogicGate
LogicGate was founded with a rebellious spirit and lofty objective: to build a modern risk management platform that helps our customers grow by transforming bu…
GRC Content & Strategy Sr. Associate
United States
- Skills: Risk Management, GRC, Compliance, Cybersecurity, Technical writing, Data analysis, Documentation, Content Development, Stakeholder collaboration, Market research
- Experience: Minimum of 3 years of hands-on experience in a relevant GRC field
- Type: Full-time
- Salary: $70,000 - $89,000 per year
Cribl
Cribl is a company dedicated to helping organizations manage their data. It provides solutions that enable businesses to optimize their data for various IT and…
Federal Compliance Manager
United States
- Skills: Compliance, FedRAMP, Risk, Security, NIST 800-53, FISMA, ISO 27001, SaaS, Documentation, Project management
- Experience: 7+ years in compliance, risk, and security, with deep experience in FedRAMP, NIST 800-53, or federal contracting.
- Type: Full-time
- Salary: $172,000 - $185,000
Tonic.ai
Tonic.ai empowers developers while protecting customer privacy by enabling companies to create safe, synthetic versions of their data for use in software devel…
Head of Information Security
United States
- Skills: security management, information security, compliance, risk management, cloud security, incident response, data governance, audit readiness, vendor management, security strategy
- Experience: 10+ years of experience with at least 5 in information security, and 3+ years within a high-growth startup
- Type: Full-time
- Salary: Competitive salary and equity
Second Front Systems
Second Front Systems (2F) is a dynamic, fast-growing entrepreneurial company at the intersection of cutting-edge technology and national security, committed to…
Security Accreditations Program Manager
United States
- Skills: Security Accreditations, DoD Authorizations, FedRAMP, Compliance, SaaS, Collaboration, Program Management, Agile, Risk Management, Documentation
- Experience: 7+ years of relevant program management experience
- Type: Full-time
- Salary: $145,000 - $165,000 a year
Envestnet
Envestnet is transforming the way financial advice is delivered through its connected technology, advanced insights, and asset management solutions – backed by…
Information Security & Risk Director
United States
- Skills: information security, risk management, cybersecurity, NIST, ISO, SOC 2, compliance, data privacy, leadership, project management
- Experience: 15+ years of experience in a senior leadership role
- Type: Full-time
- Salary: $160,000 to $200,000
Omada Health
Omada Health is a leading digital care provider dedicated to empowering individuals to achieve their health goals through sustainable behavioral change.
AI Security Engineer
United States
- Skills: AI Security, Machine Learning, Healthcare Compliance, Security Architecture, Data Privacy, Incident Response, Threat Modeling, Security Controls, Regulatory Compliance, Risk Management
- Experience: 7+ years of experience in information security, with 3+ years focusing on AI/ML systems
- Type: Full-time
- Salary: $174,800 - $218,500
Anchorage Digital
Anchorage Digital is a crypto platform that enables institutions to participate in digital assets through custody, staking, trading, governance, settlement, an…
Product Manager
United States
- Skills: custody, digital assets, security architecture, operational controls, institutional-grade, infrastructure, integration, compliant, crypto adoption, solutions
Upwork
Upwork is the world’s largest work marketplace, connecting businesses with highly skilled professionals worldwide. From entrepreneurs to Fortune 100 enterprise…
Associate Privacy Counsel
United States
- Skills: privacy, information security, GDPR, CCPA/CPRA, data processing agreements, regulatory compliance, risk, legal guidance, stakeholders, training materials
- Experience: 1–3 years
- Type: Full-time
- Salary: $151,500 - $190,000 USD
Lime
Lime is the world's largest shared electric vehicle company. We’re on a mission to build a future where transportation is shared, affordable and carbon-free. O…
Senior Manager, Security
United States
- Skills: cyber security, risk assessments, security strategy, compliance, security incidents, vulnerability assessments, security training, third party risk management, engineering collaboration, security frameworks
- Experience: 8+ years of experience in product and/or corporate security and operations, minimum of 4 in leadership
- Type: Full time
- Salary: $192K – $264K
AHEAD
AHEAD builds platforms for digital business. By weaving together advances in cloud infrastructure, automation and analytics, and software delivery, we help ent…
Senior Security Technical Consultant - Strategy & GRC
United States
- Skills: information security, compliance, client delivery, business development, engagement lead, project management, consulting, strategy, risk management, thought leadership
- Experience: Minimum of 3 years of leadership experience, 7+ years consulting experience
- Type: Full Time
- Salary: $160,000 - $190,000 a year
Mozilla Corporation
Mozilla Corporation is the non-profit-backed technology company that has shaped the internet for the better over the last 25 years. We make pioneering brands l…
Staff Security Engineer
United States
- Skills: security risks, security controls, risk assessments, cybersecurity strategies, security governance, internal consulting, regulatory compliance, technology assessment, training and awareness, communication
- Experience: 7+ years of demonstrated ability in a security consulting or architecture role
Pax8
Pax8 is the leading cloud-based technology marketplace, simplifying the cloud journey for our partners by integrating technology, business intelligence and pro…
Trust and Security Program Operations Analyst
United States
- Skills: Trust and Security, project management, Governance, Risk, and Compliance (GRC), Security Architecture, team collaboration, process improvements, budget management, internal communication, analytical skills, cybersecurity principles
- Experience: At least two (2) years of relevant experience (e.g., project management, program operations, GRC, security analyst)
- Type: Full-time
- Salary: $68,000/yr to $85,000/yr or more depending on experience
A-LIGN
A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-…
ISO Auditor
United States
- Skills: ISO assessments, IT assessments, SOC, ISO 27001, HITRUST, FedRAMP, PCI DSS, communication skills, audit management, cybersecurity compliance
- Experience: At least 1-2 years of experience conducting IT assessments with at least one industry standard framework such as SOC, ISO, SOX, PCI DSS, etc.
- Type: Full-Time
Business Wire
Business Wire, a Berkshire Hathaway company, is the global market leader in press release distribution and regulatory disclosure.
Principal GRC Analyst
United States
- Skills: Governance, Risk Management, Compliance, Cybersecurity, Automation, Risk Assessments, Compliance Assessments, Security Controls, Regulatory Compliance, Stakeholder Collaboration
- Experience: 8+ years of experience using risk management and GRC platforms.
- Type: Full Time
- Salary: $175K to $182K/year
Affirm
Affirm is reinventing credit to make it more honest and friendly, giving consumers the flexibility to buy now and pay later without any hidden fees or compound…
Sr. Manager, Security Awareness Risk Manager
United States
- Skills: security training, cybersecurity, risk management, security awareness, project management, compliance, e-learning, training materials, communication, behavioral metrics
- Experience: At least 6 years of risk management, information security, or other relevant experience working with technical teams and balancing risk against business need.
- Salary: USA base pay range (CA, WA, NY, NJ, CT) per year: $190,000 - $240,000; USA base pay range (all other U.S. states) per year: $169,000 - $219,000
LaunchDarkly
LaunchDarkly helps developers deliver better software faster by providing a feature management platform that enables feature flagging and incremental rollouts.
Director of Security
United States
- Skills: Security strategy, Governance, Risk management, Compliance, Product Security, Incident response, Security program, Software development lifecycle, FedRAMP, Security posture
- Experience: 10+ years in security domains like Application Security, GRC, Product Security, Infrastructure
Parsons
A company involved in infrastructure, transportation, environmental, digital transformation, urban development, energy, water and wastewater, national security…
Program Security Manager (VAXCOM)
United States
- Skills: Security Management, Data Center, Security Protocols, Incident Response, Security Technologies, Security Program, Security Operations, Security Standards, Security Program Management, Risk Identification
Yalo Inc.
Yalo Inc. is a SAAS company focused on conversational commerce, aiming to bring digital experiences to underserved emerging markets, especially in Latin Americ…
Kodex
Kodex is revolutionizing the way companies handle third-party data requests with a secure, modern portal that enables organizations to manage data requests eff…
Compliance, Risk & Governance Manager
United States
- Skills: compliance, risk management, regulatory frameworks, security, IT systems, vendor assessments, privacy regulations, audits, policy development, data governance
- Experience: 5+ years in compliance, risk management, or IT governance
- Type: Full-time
Wiz
Reinventing cloud security and empowering businesses to thrive in the cloud. Leading provider trusted by security teams worldwide, with a culture that values w…
Customer Assurance Manager
United States
- Skills: cloud security, customer assurance, security questionnaires, security audits, RFIs/RFPs, security reviews, security controls, compliance, customer portals, security discussions
Busey Bank
Busey Bank is committed to delivering excellent service and has a diverse and inclusive workplace. It offers a range of financial services and values talent wi…
Internal Audit Manager, IT
United States
- Skills: IT audits, Sarbanes Oxley, IT controls, Cybersecurity, Internal audit, Risk management, Data analytics, Robotic process automation, IT General Controls, Control testing
- Experience: 6 or more years internal audit, IT, IT consulting, risk, or other control-related function
- Salary: $100,000 - $125,000/year
MagicSchool AI
MagicSchool is a premier generative AI platform for teachers, aiming to revolutionize education with innovative AI solutions.
Director, Information Technology & Security (K12 Edtech)
United States
- Skills: AI, Security, IT Management, EdTech, SOC 2, NIST, ISO 27001, FERPA, COPPA, Project Management
- Experience: At least 5 years in IT and security
- Type: Full-time
- Salary: $100K – $140K
Sword Health
Sword Health is a digital health company focused on pain management and health outcomes, utilizing AI and innovative solutions.
Chief Information Security Officer
United States
- Skills: security, cybersecurity, GRC, SOC 2, HITRUST, CMMC, FedRAMP, security policies, incident response, digital health
- Experience: ~10 years of cybersecurity leadership
- Type: Full-time
Aptos
Aptos is a people-first blockchain on a mission to help billions of people achieve universal and fair access to decentralized assets in a safe and scalable way…
Security Technical Program Manager
United States
- Skills: security, security initiatives, compliance, auditing, threat modeling, risk assessments, audit preparation, security health, project roadmaps, security programs
Kraken
Kraken is a mission-focused company rooted in crypto values. It develops premium crypto products for traders, institutions, and newcomers, with a focus on secu…
Security Controls and Compliance Specialist (Remote)
United States
- Skills: security, compliance, audit, ISO 27001, SOC 2, PCI DSS, security frameworks, cloud security, automations, regulations
- Experience: 5–7 years in security engineering or external audit/advisory
- Type: Full-time
Patreon
Patreon is a media and community platform supporting creators through memberships, exclusive content, and direct sales.
Senior Security Engineer
United States
- Skills: Security Automation, Cloud Security, Incident Response, Risk Management, Compliance, GRC, Threat Hunting, Vulnerability Management, Security Controls, Security Metrics
- Experience: 5+ years in Security Engineering or related roles
Vanta
Vanta started in 2018, automating security monitoring for compliance standards and creating a Trust Management Platform to help companies build, maintain, and …
Senior Revenue Operations Analyst
United States
- Skills: security, compliance, trust, monitoring, platform, security foundation, automation, continuous security, trust management, real-time
Pomelo Care
Pomelo Care is a multi-disciplinary team of clinicians, engineers and problem solvers who are passionate about improving care for moms and babies. They are tra…
Director of Governance, Risk and Compliance (GRC)
United States
- Skills: Governance, Risk Management, Compliance, Security Policies, Risk Assessments, HIPAA, CCPA, GDPR, Security Strategy, Vendor Risk Management
- Experience: 9+ years in information security (or 6 years with relevant bachelor’s degree) with a focus on GRC.
- Salary: $185,000 to $235,000
Elastic
Elastic, the Search AI Company, enables everyone to find the answers they need in real time, using all their data, at scale — unleashing the potential of busin…
Sr. Analyst - IT Internal Audit Back Sr. Analyst - IT Internal Audit
United States
- Skills: internal audit, IT SOX, compliance, controls, audit projects, process improvements, risk assessment, SOC, IT controls, internal control
- Experience: 4+ years of internal audit, external audit, and IT Audit SOX related experience
- Salary: $89,100—$140,900 USD
Luxoft
Luxoft is a technology consultancy providing software development services and innovative IT solutions.
Program Manager (Governance Risk Compliance)
United States
- Skills: Governance, Risk Management, Compliance, System Migration, Regulatory Requirements, Incident Management, Data Integrity, Integration, Dependency Management, Operational Transition
- Experience: 8 to 9 years in GRC, risk management, compliance or related fields
Stripe
Stripe is a financial infrastructure platform for businesses. Millions of companies - from the world’s largest enterprises to the most ambitious startups - use…
Director of Technology Risk and Controls
United States
- Skills: risk management, compliance programs, regulatory frameworks, SOC, SOX, PCI, DORA, ISO-27001, team leadership, process development
- Experience: 8+ years in technology risk and compliance management
Deel
Deel is the all-in-one payroll and HR platform for global teams, supporting workers in 100+ countries with a focus on transforming the future of work.
Security Architect Team Lead
United States
- Skills: security architecture, risk management, security standards, cloud security, penetration testing, security assessments, vulnerability management, ISO 27001, GDPR, incident response
- Experience: 8+ years in cybersecurity, including security architecture and risk management
- Type: Full-time
NiSource
Integrity Management Engineer
United States
- Skills: risk assessment, asset integrity, regulatory compliance, pipeline safety, program management, data analysis, operation support, regulatory filings, safety management system, industry standards
Coalfire
Coalfire is a cybersecurity firm dedicated to solving complex cybersecurity challenges across various industries, providing advisory, assessment, automation, a…
Gartner Inc.
Gartner is a leading research and advisory company committed to providing valuable insights to enterprise leaders.
Sr Consultant, Cyber Security IT Strategy
United States
- Skills: cybersecurity, IT strategy, cloud security, security assessments, privacy risk management, cybersecurity frameworks, technologies, risk assessments, security architecture, compliance
- Experience: 2+ years of technical experience in IT audits; cybersecurity strategy, assessment, and design; vulnerability assessment, and/or privacy engagements
- Type: Full-time
- Salary: 112,000 USD - 135,000 USD
AHEAD
AHEAD builds platforms for digital business, specializing in cloud infrastructure, automation, analytics, and software delivery to help enterprises with digita…
Principal Technical Consultant - Strategy & GRC
United States
- Skills: security, governance, compliance, client engagement, project management, strategy, roadmap, design, planning, consulting
- Experience: Minimum of 10 years consulting experience
- Type: Full-time
- Salary: $190,000 - $220,000 a year
SixGen, Inc.
SixGen is committed to solving our customer’s hardest problems with eagerness, effectiveness, and efficiency. They focus on cybersecurity in classified environ…
ISSO/ISSE/System Administrator
United States
- Skills: cybersecurity, RMF, STIGs, security controls, classified environments, Linux, Windows, network protocols, risk assessment, compliance
- Experience: 3-20+ years
- Type: Full-time