SeniorInformationSystemsAuditor

## Description Are you passionate about technology and enjoy explaining complex solutions in a way that everybody gets excited? If so, read on!   About Picus Picus Security, the leading security validation company, gives organizations a clear picture of their cyber risk based on business context. Picus transforms security practices by correlating, prioritizing, and validating exposures across siloed findings so teams can focus on critical gaps and high-impact fixes. With Picus, security teams can quickly take action with one-click mitigations to stop more threats with less effort.   The Picus Security Validation Platform easily reaches across on-prem environments, hybrid clouds and endpoints coupled with Numi AI to provide exposure validation.    The pioneer of Breach and Attack Simulation, Picus delivers award-winning threat-centric technology that allows teams to pinpoint fixes worth pursuing, offering a 98% recommendation in Gartner Peer Review.   Picus is headquartered in Ankara, with a regional office in Istanbul, but our team is remote across Türkiye. Please note that all CVs must be submitted in English. ## What You'll Do Lead and oversee global compliance programs (ISO/IEC 27001, 22301, 27701, 20000-1, SOC 2, NIST CSF, CSA STAR) to maintain continuous audit readiness Plan and execute risk-based IT and internal audits, with a strong focus on secure SDLC, software engineering processes, cloud infrastructure, and AI security domains Evaluate and enhance the effectiveness of security and governance controls, driving continuous improvement across policies and processes Contribute to RFPs and security questionnaires with accurate and strategic security and compliance input Manage audit and security vulnerability findings end-to-end, ensuring sustainable remediation and measurable control improvements Actively support the Third-Party Risk Management (TPRM) program by participating in SaaS security assessments and vendor due diligence Define and track key audit and