(fluent Ukrainian and English) IT Compliance & Audit Specialist (Poland)

Have you always dreamed of building a career in information security? Do you have an analytical mindset and a keen eye for detail?

We are looking for an IT Compliance & Audit Specialist who is eager to expand their knowledge in information technology and cybersecurity, as well as gain experience working in an international IT company.

You will work on a wide range of tasks related to information security to support the company's operations together with our Security Department.

What you will do:

1. Manage certification preparation processes (ISO, PCI DSS, SOC 2, etc.) and conduct them in accordance with relevant requirements (HIPAA, GDPR, CCPA, etc.).
2. Monitor compliance of IT infrastructure with security standards.
3. Collaborate with auditors and certification bodies.
4. Monitor changes in legislation and security standards.
5. Create documentation on policies and processes.
6. Handle security requests from clients (external and internal).
7. Develop and conduct internal audits.
8. Assess risks and monitor compliance with security requirements.
9. Prepare and conduct training on information security and compliance requirements.

What you need to succeed in this role:

• 3+ years of proven experience in information security, audit or compliance sphere(s).
• Degree in information technology, cybersecurity, law or risk management.
• Certifications (one or more) are desirable:

• ISO 27001 Lead Implementer / Lead Auditor;
• CISM (Certified Information Security Manager);
• CISA (Certified Information Systems Auditor);
• CISSP (Certified Information Systems Security Professional);
• CIPP/E or CIPM (for GDPR);
• PCIP, ISA or QSA (for PCI DSS).

• Experience in external audits and certification preparation.
• Knowledge of risk management principles.
• Skills in conducting GAP analysis and internal audits.
• Outstanding analytical skills and attention to detail.
• Excellent English skills (for interacting with auditors, writing policies and reports, communicating with clients).

Will be a great plus:

• Experience working in the financial and/or tech industry that handles sensitive data.
• Experience in automating compliance processes (GRC platforms, ISMS systems).
• Knowledge of DevSecOps approaches for integrating security into the development lifecycle.

Benefits and Perks:

• Business hours.
• Opportunity to work fully remotely.
• Creative and unique art offices (see for yourself).
• Inclusive international environment.
• Compensation in USD.
• Good bonuses for referring friends.
• Paid intensive training and probation.
• Mind-blowing corporate events and social activities.
• Work-life balance.
• Responsive management interested in your growth and long-lasting cooperation.
• Greenhouse conditions for self-development.

Who we are:

SupportYourApp is a Support-as-a-Service company that provides secure technical, customer support, and CX services for tech companies around the globe.

We work with clients from over 30 countries and speak over 60 languages.

Since 2010, we've become an industry leader in premium outsourced customer support and turned global with 8 hubs around the world.

We treat our team like our clients, surrounding them with unlimited care, an individual approach, and a wholesome positive experience.

We welcome people with various backgrounds and experiences. Grab the chance to join us and send your CV in English, pointing out your outstanding skills!

Visit our website: http://www.supportyourapp.com/

• We are a multinational company with unbiased views. The assessment of candidates is not affected by such characteristics as race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in provision of employment opportunities and benefits.