About the role

We are looking for a multifaceted GRC Engineer who can lead our compliance initiatives across the organization. You will be responsible for ensuring adequate security controls to manage risk across the organization. Additionally, you will collaborate with legal, engineering and operations teams to ensure compliance with all relevant security requirements.

At Applied Intuition, you will:

• Facilitate risk assessments and control reviews to accommodate new business areas as well as changes in processes
• Plan, design and execute controls testing, controls assessment and risk management across all domains for IT General Controls and other GRC requirements, as appropriate in support of multiple frameworks (e.g. ISO27001, SOC2, Tisax)
• Conduct risk assessments against products, features, datasets, applications, and Third Party Risk Management (TPRM)
• Partner to evaluate the design and effectiveness of the technical and operational control environment
• Validate information security key controls to identify control risks, analyze root causes and trends in potential control weaknesses; suggest new controls to meet GRC standards where applicable
• Execute strategies for ensuring organizational compliance with SOC2, ISO27001, Tisax, Data Privacy, federal, state, and local government compliance, or similar regulations
• Assist in the development and implementation of compliance training and awareness programs

We're looking for someone who has:

• 1-3 years or more of relevant experience in risk-based technology compliance management programs, or Auditing experience
• Experience in performing risk-based testing for control compliance, including the identification, assessment, and mitigation of compliance issues: understanding how to balance the company's risk appetite to compliance needs/requirements
• Detailed knowledge and experience with technology controls across a variety of industry frameworks and how to assess controls supporting compliance for SOC2, ISO 27001, Tisax and privacy
• Experience developing dynamic approaches to the implementation of a technology compliance program utilizing a variety of testing methods, both manual and automated, to provide qualitative and quantitative results where applicable

Nice to have:

• Certifications such as CISA, CRISC, CISSP
• Previously led Audits for ISO27001 or SOC 2

Compensation at Applied Intuition for eligible roles includes base salary, equity, and benefits. Base salary is a single component of the total compensation package, which may also include equity in the form of options and/or restricted stock units, comprehensive health, dental, vision, life and disability insurance coverage, 401k retirement benefits with employer match, learning and wellness stipends, and paid time off. Note that benefits are subject to change and may vary based on jurisdiction of employment.

Applied Intuition pay ranges reflect the minimum and maximum intended target base salary for new hire salaries for the position. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, interview performance, and the level and scope of the position.

Please reference the job posting subtitle for where this position will be located. For pay transparency purposes, the base salary range for this full-time position in the location listed is: $120,000 to $140,000 USD annually.