Compliance Governance
Job Description
This is a unique opportunity to build the company's global ISO and compliance function from the ground up, working directly with executive leadership to establish scalable governance frameworks and implement AI-driven compliance automation across international operations.
Qualifications:
- Bachelor's degree in Information Security, Computer Science, Engineering, Business, Quality Management, or a related discipline.
- 10+ years of experience in Governance, Risk & Compliance (GRC), Information Security, Quality Management, or Compliance leadership.
- Proven experience owning and managing both ISO 9001:2015 and ISO/IEC 27001:2022 within an organization.
- Demonstrated hands-on experience implementing complete ISO management systems from the ground up, including:
Quality manuals
Process mapping
Internal audits
External certification audits
Management reviews
Corrective and preventive actions (CAPA)
Continuous improvement programs
- Experience maintaining certified ISO environments across multiple business units or international operations.
- Strong background within technology, SaaS, cloud, fintech, AI, or digital products.
- Experience working directly with executive leadership and cross-functional stakeholders.
- Excellent understanding of risk management, governance frameworks, and compliance best practices.
- Strong communication, stakeholder management, and leadership skills.
- Professional certifications such as ISO 9001 Lead Auditor/Lead Implementer, ISO 27001 Lead Auditor/Lead Implementer, CISSP, CISM, CRISC, or equivalent are highly desirable.
- Experience with AI governance frameworks (e.g., ISO 42001) or compliance automation technologies is an advantage.
Responsibilities Duties:
Key Responsibilities:
- Lead the global implementation and management of ISO 9001:2015 and ISO/IEC 27001:2022 management systems.
- Develop, implement, and maintain the company's Quality Management System (QMS) and Information Security Management System (ISMS).
- Own the complete certification lifecycle, including planning, implementation, internal audits, management reviews, external certification audits, surveillance audits, and continual improvement activities.
- Design and maintain quality manuals, policies, procedures, process documentation, risk registers, and compliance records.
- Develop standardized governance frameworks that can be deployed across multiple international offices.
- Ensure all new global operations achieve ISO certification within the company's expansion timeline.
- Lead internal and external audits while coordinating with certification bodies and external auditors.
- Drive process improvement initiatives using risk-based thinking and measurable quality objectives.
- Develop AI-enabled compliance automation solutions to improve audit readiness, documentation, monitoring, and reporting.
- Partner with Engineering, Product, Operations, IT, Legal, HR, and executive leadership to embed compliance into business operations.
- Monitor regulatory changes and industry best practices affecting quality management, information security, privacy, and AI governance.
- Deliver executive reporting, compliance dashboards, KPIs, and management review presentations.
- Build compliance awareness across the organization through training, coaching, and continuous engagement.