Job
Description
You will be joining the trust and safety team at Ethos, where you will play a crucial role in safeguarding Ethos information assets, managing technology compliance, and ensuring the trust, privacy, and safety of Ethos customers and employees. As a key member of the GRC team, you will have the opportunity to shape the compliance, governance, and privacy vision for the organization. Your responsibilities will involve working on various use cases, technologies, and processes, defining and implementing predictive compliance controls, driving automation and efficiencies in privacy processes, third-party risk management, and regulatory compliance activities. Your role will encompass a wide range of tasks, from advisory to hands-on implementation. **Roles And Responsibilities:** - **Audit Facilitation** - Coordinate and support internal and external compliance audits/control testing - Serve as a liaison between auditors/control testers and internal stakeholders - Collect, organize, and provide requested evidence/artifacts to auditors/control testers in a timely manner - **Stakeholder Coordination** - Work closely with internal teams (IT, Security, HR, Legal, Engineering, Operations, etc.) to gather compliance-related documentation - Follow up with stakeholders on pending audit requests and ensure timely submission of evidence - Track and monitor progress on audit findings and corrective actions - **Compliance Monitoring & Reporting** - Maintain accurate records of audit activities, evidence logs, and remediation actions - Provide regular updates on the status of audit findings, remediation efforts, and compliance gaps - Support in drafting compliance reports, dashboards, and management summaries - **Policy & Awareness Support** - Assist in ensuring company policies, processes, and procedures are aligned with security and compliance requirements - Support security awareness initiatives and compliance training for employees **Qualifications & Skills:** - 2+ years of experience in compliance, risk management, or IT/security audit support - Knowledge of information security principles, data privacy concepts, and compliance frameworks (ISO 27001, SOC 2, CCPA, HIPAA, AML, etc.) - Strong organizational skills with the ability to manage multiple audit requests simultaneously - Excellent communication and stakeholder management skills - Proficiency in documentation, record-keeping, and reporting tools (e.g., Excel, Jira, GRC platforms such as OneTrust) Even if you don't meet every single requirement listed, Ethos encourages you to apply if you are excited about the role and are dedicated to contributing to a diverse, inclusive, and authentic workplace.,
