Responsibilities
Program Execution & Framework Management (The Doing):
AI , Security & Privacy Controls: Design, implement, and personally monitor the internal controls required to achieve and maintain the ISO 42001 (AI) and ISO 27001 certifications, as well as adherence to the NIST AI and Privacy Frameworks.Audit Execution: Act as the primary hands-on coordinator for all internal and external audits, including evidence collection, control testing, and remediation tracking.Daily Workflow Management: Own and execute the daily operational GRC pipeline, leveraging AI-driven automation tools to efficiently manage third-party vendor risk assessments and customer security questionnaires. Active Stakeholder Integration & Policy:
Proactive Engagement: Embed yourself directly into product and engineering lifecycles at the initiation phase. Attend project kick-offs, actively listen, and translate business targ...