Compliance Specialist

Summary

Join Wrike's security team as a Compliance Manager, responsible for managing and ensuring compliance with ISO 27001, SOC 2, and other security frameworks. You will oversee security training, vendor risk management, and policy reviews. Collaborate with various departments to maintain a strong security posture. The ideal candidate possesses 2-3+ years of experience in information security compliance, experience with ISO 27001 and SOC 2, and excellent communication skills. A bachelor's degree in a related field is required. Wrike offers a comprehensive benefits package including paid vacation, sick leave, life and health insurance, parental leave, and more.

Requirements

• 2-3+ years of experience in information security compliance, preferably in technical audits
• Experience with ISO 27001 and SOC 2
• Understanding of security frameworks basics, risk management, and compliance best practices
• Experience with security awareness training and policy development
• Analytical and problem-solving skills, understanding how to apply a certain process to high-level standard requirements
• Excellent communication and interpersonal skills to collaborate effectively with internal teams and external auditors
• Fluent English
• Bachelor's degree in Information Security, Computer Science, or a related field

Responsibilities

• Manage and maintain internal security controls to come up with complete understanding of compliance with ISO 27001, SOC 2, and other regulatory standards
• Develop, implement, and enhance security policies and procedures to align with industry best practices
• Assist with regular risk assessments and audits to identify and mitigate security risks and timely implementation of risk treatment plans
• Oversee security awareness training programs for employees to promote a strong security culture
• Track third-party vendor security assessments and incoming materials to ensure compliance with security requirements and become familiar with capabilities of internally used tool sets
• Work cross-functionally with IT, Legal, and other departments to explore existing processes against security and compliance requirements and propose improvements
• Keep up-to-date with industry trends, regulatory changes, and best practices in security by interacting with hands-on security functions
• Assist in internal and external security audits, providing necessary documentation and support with opportunity to become a leading internal auditor and steward third-party assessments
• Maintain documentation related to compliance efforts, audit findings, and remediation activities

Preferred Qualifications

• Familiarity with regulatory requirements such as GDPR, HIPAA, STAR, or other relevant standards
• Ability to create and understand data flows within a product
• A balanced approach to risk versus productivity: while saying 'no' might be easy, you know how to find workable solutions
• Proficiency in using AI tools and a solid understanding of the AI landscape
• An innovative mindset that enables you to creatively tackle complex challenges
• Knowledge of French

Benefits

• 28 calendar days of paid vacation
• Sick leave compensation
• Life insurance plan
• Health insurance plan
• Fitness plan (800 EUR/year)
• Parental leave
• 2 volunteer days
• Full-remote & On-demand access to Co-working space
• Utility allowance (30 EUR/month, subject to taxation)