RemoteLeaf Logo
Log in Sign up

Senior Information Systems Auditor

7 hours, 27 minutes ago
Turkey
Full-time
Senior
Security Analyst
Cybersecurity
Cybersecurity Machine Learning
Apply Now
Picus Security

Picus Security

Picus Security offers a comprehensive security validation platform that continuously tests and optimizes security controls through automated attack simulations, enabling organizations to proactively identify vulnerabilities and enhance their overall cy...

Professional Services
51-250
Founded 2013
$32M raised
View All Jobs 8

Description

  • Lead and oversee global compliance programs to maintain continuous audit readiness across standards such as ISO/IEC 27001, 22301, 27701, 20000-1, SOC 2, NIST CSF, and CSA STAR.
  • Plan and execute risk-based IT and internal audits with emphasis on secure SDLC, software engineering processes, cloud infrastructure, and AI security.
  • Evaluate security and governance controls and drive continuous improvement across policies, procedures, and related processes.
  • Contribute security and compliance input to RFPs and security questionnaires.
  • Manage audit findings and security vulnerability findings end to end, ensuring sustainable remediation and measurable control improvements.
  • Support the Third-Party Risk Management program through SaaS security assessments and vendor due diligence.
  • Define, track, and report key audit and compliance metrics to leadership and stakeholders.
  • Assess the risk and privacy impact of emerging technologies such as AI, ML, and automation and guide engineering teams on secure adoption practices.
  • Act as a strategic advisor to business and technology teams on scalable, risk-aware processes in a cloud-native environment.

Requirements

  • 3+ years of hands-on experience in audit, compliance, risk management, or information security, preferably in a SaaS, cloud-native, or technology-driven environment.
  • Hands-on experience with ISO/IEC standards 27001, 27701, 22301, and 20000-1, as well as SOC 2, including preparation, audit coordination, and evidence management.
  • Experience advising cross-functional stakeholders and influencing control improvements in dynamic technology environments.
  • Practical knowledge of international security and privacy regulations such as GDPR and CCPA.
  • Experience supporting or managing Third-Party Risk Management, vendor due diligence, and customer-facing compliance processes.
  • Proven ability to manage multiple audits and compliance initiatives simultaneously in a fast-paced environment.
  • Strong verbal and written communication skills in English, including documentation and policy writing.
  • Preferred certifications in ISO 27001, 22301, 27701, or 20000-1 LA.
  • Preferred ISACA certifications such as CISA, CISM, or CRISC.
  • Experience with SOC 2, NIST, and CSA STAR reporting frameworks preferred.
  • ITIL certification is a nice-to-have.
  • CVs must be submitted in English.

Benefits

  • Full-time remote role with a remote team across Türkiye.
  • Opportunity to work at a fast-growing cybersecurity company with global exposure.
  • Chance to shape and lead work in a growing security validation segment.
  • Access to broad responsibility and ongoing career development opportunities as the company grows.
  • Equal opportunity employer with fair consideration for all qualified applicants.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Carvana

Security Associate - 1st Shift

Carvana 10K-50K Automotive

Carvana is hiring a Safe and Secure Associate to help protect associates, visitors, and assets at its Inspection Center by managing site access, monitoring safety and security conditions, and supporting inventory control.

United States Full-time Junior Security Analyst
$42k-$42k
JIRA
7 hours, 27 minutes ago
Gate.com

内容风控专家

Gate.com 51-250 IT Services

APAC-C1 内容风控专家将在远程环境下为一家交易所构建面向全球社交内容的安全治理体系,重点应对多语言、多模态场景中的欺诈引流与违规对抗问题。

Asia Lead Security Analyst
Machine Learning NLP
7 hours, 27 minutes ago
Stripe

Security Analyst, Bug Bounty

Stripe 5K-10K Diversified Financial Services

Stripe is hiring a Security Analyst for its Vulnerability Management team to triage bug bounty reports, coordinate remediation, and improve how vulnerabilities are surfaced and managed across the company.

North America Mid Level Security Analyst
AWS Burp Suite GCP Python Ruby
7 hours, 40 minutes ago
Harford County Public Library

Engenharia de Segurança III (Pleno) - Operações do SOC

Harford County Public Library 51-250 Diversified Consumer Services

Stone Tech is hiring a mid-level Security Engineer III to support the SOC operations team in Brazil, focused on monitoring, incident response, and continuous improvement of security detection and protection across the company’s technology environment.

Brazil Full-time Mid Level Security Analyst Security Engineer
AWS Azure Bash CrowdStrike Elasticsearch Fortinet GCP Palo Alto Python SOC TCP/IP
7 hours, 42 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers