We’re looking for an amazing ISO 27001 Expert to help support our Customer Success and Sales teams, as well as assist with product enhancements and solutioning. You’ll be working in a fun, fast-paced, highly collaborative environment with a small team of industry rockstars as a ISO 27001 and compliance resource.
We’re looking for folks who are fluent in all things ISO 27001 (though PCI DSS, SOC 2, HIPAA, and GDPR are a plus) who understand how security and compliance enables business.
At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it.
What you’ll do as an ISO 27001 Expert at Vanta:
- Perform ISO 27001 internal audits for customers
- Consult with ISO 27001 customers on implementation and provide audit support
- Assist with scoping and presales calls for prospective and existing Vanta customers
- Work with internal teams to identify opportunities to continuously improve security/compliance product and features
- Assist internal teams in creating and refining our ISO 27001 and ISMS tools and templates
- Provide product support for current customers to help them interpret ISO 27001 standards and security/compliance-related questions for multiple frameworks
- Assist internal Vanta team with ISO 27001 and security/compliance-related questions
- Assist Vanta Sales and Marketing teams in creating educational and marketing content (blogs, whitepapers, webinars)
How to be successful in this role:
- Strong knowledge of ISO 27001/2 and assessment and certification processes
- Ability to properly scope ISO 27001 certification audits
- Strong knowledge of ISO 27001 requirements and their applicability
- Strong knowledge of cloud technologies
- Customer-first focus
- Can work independently and with teams to identify and resolve opportunities and issues
- Enjoys working in a fast-paced “established startup” environment
- Can communicate complex ISO 27001 concepts to internal teams and customers
- Prefer security-related certifications such as CISSP, CISA, CISM, AWS Security, PCI PCIP/QSA/ISA, and ISO 27001 Lead Auditor/Implementer (or ability to obtain in 30 days)
What you can expect as a Vantan:
- Industry-Competitive Salary and Equity
- 100% covered Medical, Dental, and Vision Benefits with Dependents Coverage
- 16 Weeks Fully Paid Parental Leave for All New Parents (Moms, Dads, Adoptive, Foster)
- Health & Wellness Stipend
- Remote Workspace Stipend
- 401(k) Matching Plan
- Flexible Work Hours and Location
- Open & Encouraged PTO Policy
- 12 Company Paid Holidays
- Free Memberships to Online Wellness Platforms (One Medical, Ginger, Headspace, and more!)
- Virtual Team Building Activities, Lunch and Learns, and other Company-Wide Events
- Offices in SF and NYC with Hubs of Vantans forming across the US, including but not limited to, Seattle, Austin, Indianapolis, LA, Boston, and more!
At Vanta, we are committed to hiring diverse talent of different backgrounds and as such, it is important to us to provide an inclusive work environment for all. We do not discriminate on the basis of race, gender identity, age, religion, sexual orientation, veteran or disability status, or any other protected class. As an equal opportunity employer, we encourage and welcome people of all backgrounds to apply.
About Vanta
We started Vanta in 2016 as Equifax had lost every American's social security number, Home Depot had leaked its customers' credit card numbers to hackers, and Facebook admitted that it irresponsibly sent user data to third parties who tried to influence the US election. It was clear that security and privacy had become mainstream issues, and that we all increasingly relied on cloud services to store everything from our personal photos to our communications at work.
Vanta's mission is to be the layer of trust on top of these services, and to secure the internet, increase trust in software companies, and keep consumer data safe.
We do this by building an automated head of security for technology companies, and we use that system to both help a company secure itself and to prove their security to others.
If we succeed in our mission, it should feel irresponsible for users to put data into a product that isn't certified by Vanta, and irresponsible for companies to collect data without using Vanta to secure and monitor themselves.
#LI-Remote