Senior IT Security Specialist

We're seeking a Senior IT Security Specialist to own and continuously improve an ISO 27001 and SOC 1/SOC 2–aligned Information Security Management System (ISMS). You will lead governance, risk, and compliance (GRC) initiatives, drive audit readiness, and elevate documentation quality across the organization—partnering with technical and business stakeholders to strengthen control effectiveness.

What you'll do

• Lead ISMS strategy and operations: policies, standards, procedures, control framework, and Statement of Applicability (SoA).
• Own audit lifecycle (internal/external): readiness planning, evidence governance, walkthroughs, findings management, and remediation tracking.
• Run enterprise risk activities: risk assessments, risk register oversight, treatment plans, and exception governance.
• Drive SOC 1/SOC 2 alignment: control mapping, design/operating effectiveness support, and continuous compliance improvements.
• Produce executive...