Governance, Risk, and Compliance Specialist

This is a fully remote position, open to applicants in Estonia.

📋 Description

• Assist in gathering evidence and documentation for both internal and external audits.

• Aid in ensuring compliance with various frameworks including SOC 2, PCI DSS, GDPR, and HIPAA/HITECH.

• Help oversee and track compliance activities, monitoring efforts, and remediation initiatives.

• Support Third-Party Risk Management efforts, including the assessment and tracking of vendor compliance.

• Contribute to the development of security questionnaires and assist in compliance discussions with customers.

• Engage in internal and external evaluations of systems and processes.

• Work in partnership with engineering and product teams to establish and uphold security controls.

• Prepare audit documentation and reports that meet compliance standards.

• Play a role in the ongoing enhancement of compliance processes and documentation.

• Stay up-to-date on emerging security and regulatory trends and facilitate internal knowledge sharing.

⛳️ Requirements

• A minimum of 3 years of experience in Information Security, Governance Risk & Compliance (GRC), Audit, or Risk Management.

• Familiarity with one or more frameworks such as SOC 2, PCI DSS, GDPR, or HIPAA/HITECH.

• Experience with cloud-based environments, preferably AWS.

• Strong organizational abilities with a knack for effectively managing priorities.

• A proactive, solution-focused attitude, accompanied by a strong curiosity and eagerness to learn.

• Capability to communicate effectively with both technical and non-technical audiences.

• Exceptional written and spoken English skills.

• Exposure to ISO/IEC 27001 and ISO/IEC 42001 is a plus.

• Relevant certifications such as CISA, CISM, CRISC, CISSP, ISO/IEC 27001 Lead Auditor, ISO/IEC 42001 Lead Auditor are advantageous.

• Proficiency in Spanish is a plus.

🏝️ Benefits

• A vibrant and rapidly evolving environment with ample learning opportunities.

• A supportive and collaborative team culture.

• A mission-driven and cooperative work atmosphere.

• Opportunities for team events, offsite gatherings, and travel.

• Complimentary gym membership (with a fun commitment to use it!).

• A diverse international team representing over 18 languages and 11 nationalities.