Website Catch
At Catch Recruit, our mission is simple: to connect exceptional talent with the right opportunities, ensuring a perfect blend of professional skills and cultural fit. As a dynamic and growing business, we are dedicated to delivering genuine value to our clients and candidates alike. We achieve t… read morehis by matching candidates with organisations that align with their personality and career aspirations while providing our clients with talent that truly complements their company culture. Our commitment goes beyond just filling roles—we prioritise building lasting relationships by focusing on a select group of clients and candidates. This approach allows us to offer a personalised, attentive service that meets the unique needs of every partnership we create.
Job Description
Key Responsibilities
Prepare SaaS companies for security audits such as SOC1, SOC2, ISO 27001 and others, including assessment, preparation, and audit management.
Assist customers with filling out vendor security questionnaires and creating policies, procedures and risk assessments using our product.
Advise customers on best practices and evolving security regulations.
Establish and maintain long-term relationships with clients by ensuring their compliance needs are met.
Perform internal vendor assessments regularly to ensure that third-party vendors comply with the company’s security and SOC1 and SOC2 standards.
Provide hands-on support throughout their compliance journey.
Coordinate activities across multiple teams and integration points, ensuring seamless execution.
Drive product improvements by incorporating market feedback and customer needs.
Write and present well-structured documentation and processes.
Lead regular phishing simulation exercises, ensuring high participation and awareness levels across the organization.
Ensure that penetration testing is performed and that the development team addresses vulnerabilities that are identified.
Deliver or coordinate security training for all relevant teams, ensuring that they are well-versed in information security practices. Conduct security tests to assess the effectiveness of training and make improvements as necessary.
Regularly conduct access reviews (at least quarterly) and manage access controls to maintain SOC1 and SOC2 compliance. Ensure timely and accurate completion of Access Management tasks, ensuring minimal security risks.
Requirements:
Bachelor’s degree in Engineering, Information Systems, Computer Science, Law, Accounting or Business.
At least 2 years in Technology Risk, Compliance, GRC, or a similar position.
Extensive experience managing compliance projects and audits (e.g., SOC1, SOC2, ISO 27001).
Background in answering security questionnaires.
Proficiency in managing multiple projects and meeting deadlines using tech tools.
Strong self-starter with a solution-focused and positive attitude.
Knowledge / Experience in the following areas will be beneficial but not required:
Information Security certifications such as SOC1, SOC2, UK GDPR and EU GDPR, or ISO 27001
Apply via company website ( N / A ) or
catchrecruitcoza.simplify.hr
To apply for this job please visit catchrecruitcoza.simplify.hr.