Frameworks Specialist

We are seeking a Compliance Framework Specialist to join our team. This is an exciting opportunity for a skilled professional to own our PCI-DSS compliance program and support multiple audit frameworks.

In this role, you will work collaboratively and independently within a global team, spanning various time zones. Your responsibilities will include maintaining full scope of PCI-DSS certification, coordinating QSA assessments, and supporting evidence collection for various ISO frameworks.

• Maintain and enhance the organization's PCI-DSS certification and coordinate quarterly Security Assessments with Qualified Security Assessors (QSAs).
• Support evidence collection for PCI-DSS, SOC 1, SOC 2, and other ISO frameworks as required.
• Conduct vendor risk assessments and manage third-party evaluations to ensure adherence to security standards.
• Document control procedures and coordinate remediation activities to address any security gaps or vulnerabilities.
• Generate regular compliance reporting, maintain accurate audit calendars, and facilitate successful audits across various locations.

• A minimum of 2-3 years of experience in PCI DSS v3.2.1 compliance across all 12 requirements, with a proven track record of success.
• Familiarity with SOC 1/SOC 2 evidence coordination and audit support, with some hands-on experience.
• Solid knowledge of ISO 27001 and related frameworks, with a willingness to learn and adapt.
• Experience in policy management, vendor risk assessment, and IT security principles, including network security, access controls, and vulnerability scanning.
• A bachelor's degree in IT/Computer Science or equivalent experience, with a strong academic background in cybersecurity or a related field.
• Independent investigation and analysis skills, with the ability to identify and mitigate security risks.
• Cross-functional collaboration and communication skills, with experience working with InfoSec, IT, and business teams.
• Technical artifact analysis skills, with the ability to review and interpret technical configurations, access reports, and logs.
• Excellent written and verbal communication skills, with the ability to engage with auditors, vendors, and stakeholders at all levels.
• A self-directed work style, with experience working in a global environment and collaborating with teams across different time zones.
• Cloud security concepts, including Azure and Entra, and familiarity with GRC tools.
• Regulated industry experience, with a deep understanding of security standards and best practices.

• Ongoing training and certification opportunities to enhance your skills and knowledge.
• Access to internal technical training programs to build practical framework knowledge and stay up-to-date with industry trends.
• The opportunity to join employee-led groups and contribute to company-wide initiatives.
• Comprehensive health coverage options and HSA benefits to support your well-being.
• A competitive 401k plan to help you plan for your future.
• A generous parental leave program to support you during this special time.
• 20 days of paid time off per year, plus observed holidays, to recharge and refocus.
• 15 hours of flexible work time per year to pursue your interests and passions.
• Tuition reimbursement opportunities to support your continued education and growth.
• The flexibility to work from anywhere in the world for two weeks out of the year, promoting work-life balance and flexibility.

We are a global leader in real estate software, committed to delivering exceptional client experiences while driving growth in the PropTech space. Our company culture is built on core values that prioritize employee well-being, diversity, and inclusion.