Drive ISO 27001 certification and SOC 2 Type II attestation initiatives end-to-end
Build and mature NetBrain’s GRC (Governance, Risk & Compliance) program
Translate compliance framework requirements into practical security policies and procedures
Define and enforce IAM (Identity & Access Management) standards
Implement and manage SIEM platforms for centralized security monitoring
Own the vulnerability management lifecycle
Develop and maintain incident response plans, playbooks, and escalation procedures
Evaluate and manage third-party vendor risk
Design and deliver security awareness training programs
Serve as the trusted security subject matter expert across business units

Requirements

8+ years of experience in information security, cybersecurity engineering, or a GRC-focused security role
Hands-on experience leading or supporting ISO 27001 and/or SOC 2 audit and certification processes
Prior experience at a B2B SaaS company with responsibility spanning both product security and corporate IT security
Strong working knowledge of compliance frameworks including ISO 27001, SOC 2, and NIST CSF
Experience with GRC platforms and security tooling (SIEM, vulnerability scanners, IAM solutions, EDR)
Professional certifications such as CISSP, CISM, CISA, or equivalent strongly preferred
Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience)

Benefits

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

ISO 27001SOC 2GRCIAMSIEMvulnerability managementincident responsesecurity policiessecurity procedurescompliance frameworks

Soft Skills

leadershipcommunicationorganizationalsubject matter expertisetraining delivery

Certifications

CISSPCISMCISAISO 27001 certificationSOC 2 certification