Senior IT Compliance (HYBRID REMOTE)

Job Description

Auctane is seeking a Senior IT Compliance professional to lead the development and implementation of their IT Compliance program. This role is crucial for ensuring the company's compliance with PCI DSS, relevant regulations, and maintaining SOC2 Certifications. The ideal candidate will possess a deep understanding of GRC principles, strong leadership skills, and a proven track record of success in a fast-paced tech environment.What this role involves:

• Leading the SOC2 Compliance Program across Auctane.
• Ensuring PCI Compliance Program across Auctane.
• Staying informed of relevant laws, regulations, and industry standards (e.g., AI ACT, GDPR, CCPA).
• Conducting regular internal compliance audits and reviews.
• Investigating compliance breaches and implementing corrective actions.
• Maintaining Auctane’s ISMS ensuring it remains in compliance and adherence to corporate policies and procedures, security standards.
• Managing AI, Data protection compliance with regards the AI Act, GDPR, US Data Protection Laws.
• Promoting a culture of ethics and compliance.
• Preparing regular reports on risk, compliance, and governance matters for senior management and the board of directors.
• Communicating effectively with stakeholders on IT Compliance topics.

Requirements for this role:

• Extensive experience in designing, building, and deploying solutions in AWS with an unwavering focus on quality.
• Comprehensive expertise in designing and delivering low-latency, high-throughput API systems using Domain-Driven Design (DDD) principles.
• Proficiency in delivering software systems while leveraging Agile, Lean, and DevOps methodologies.
• Experience with at least one object-oriented programming language, framework, or development platform.
• Experience in developing CI/CD solutions and cloud infrastructure automation using tools such as Terraform, Ansible, Chef, and Puppet.
• Experience with IT compliance frameworks, including related regulatory and IT compliance requirements (e.g., SOC 2, NIST 800-53, ISO 27001).
• Strong understanding of PCI DSS requirements, controls, and assessment processes.
• Hands on Information Security Awareness and/or security compliance experience with Information Security standards, technology and monitoring
• Highly organized, meticulous attention to detail
• 4 year degree in business or related field or equivalent experience
• Polish and English are required for this role

Auctane offers:

• Annual Salary Review
• Personal Training Budget (Up to 7.000/ 4.100 PLN/year)
• Up to 30 days of vacation per year
• Up to 500 PLN/year to match your NGO donations
• Lunch card
• Volunteer day
• Referral Fee (4k-20k PLN)
• Employee Assistance Program with psychological assistance free of charge
• Flexible work schedule
• Inclusive and upbeat work environment
• Cross-cultural atmosphere
• Company events
• Internal and external training, free access to online training platforms such as Linkedin Learning
• Possibility to work in a home-office using equipment provided by AUCTANE, or in our office prepared in accordance with all safety requirements
• Languages classes every week
• Free private medical insurance
• Attractive life insurance
• Co-financing for sports and recreational activities
• Gym membership co-financing