To keep our amazing growth, AppsFlyer’s security team continues to focus on hiring amazing and talented people. Our only missing part is having someone dedicated to Information Security.
We are looking for a security-oriented person to join us as an GRC Specialist, validate our services and environments according to the highest security standards and help customers build trust in our company through InfoSec compliance.
The ideal candidate is highly motivated, demonstrating a ‘can do’ attitude and passion for people and technology, curious about information security and data protection. We’re looking for someone with a combination of technical and communication skills and the ability to handle a mix of multiple tasks that may include project and technical knowledge. This role will provide career growth opportunities to develop/acquire new security skills in your duties.
What you'll do:
- Develop and implement GRC frameworks, policies, and procedures.
- Monitor compliance with relevant regulations (e.g., ISO 27001, SOC2, GDPR)
- Provide InfoSec services for the company's prospects/customers (Security questionnaires)
- Support internal and external audit processes for relevant compliance concerns, including security frameworks such as ISO 27001, SOC and more
- Handle the security awareness training for the company
- Support vendor due-diligence process according to company's procedure
- Maintain a risk register, perform risk assessments and recommend mitigation strategies
- Provide guidance on regulatory requirements and industry standards.
- Collaborate with IT, legal, and operational teams across the company
- Provide support during internal and external audits, including preparing necessary documentation and coordinating with auditors
What you have:
- 3+ years of professional experience in a GRC, Audit, Information security or similar position
- 2+ Years experience in a SaaS technologies company
- 2+ years experience in handling 3rd party risk assessments
- Technical Orientation
- Experience with risk assessment and risk management methodologies.
- Excellent communication skills and ability to collaborate with cross-functional teams.
- Knowledge of security frameworks (such as NIST) and regulations such as ISO 27001, SOC 2
- Information security related certifications - Advantage(CISA, CISM, CRISK etc.)
Bonus Points:
- Experience in cloud security and data privacy
- Ability to manage multiple projects and meet deadlines
- Being introduced by an AppsFlyer team member
As a global company operating from 25 offices across 19 countries, we reflect the human mosaic of the diverse and multicultural world in which we live. We ensure equal opportunities for all of our employees and promote the recruitment of diverse talents to our global teams without consideration of race, gender, culture, or sexual orientation. We value and encourage curiosity, diversity, and innovation from all our employees, customers, and partners.