ISO/IEC 27001 is the world's most widely recognized standard for an Information Security Management System (ISMS). Most recently revised in 2022, it specifies how an organization establishes, operates, and continually improves a risk-based system of security controls, and it is certifiable, so companies use it to prove their security posture to customers and regulators across borders. Where SOC 2 is the dominant attestation in North America, ISO 27001 is the certification most often required internationally.
It is also the template for the newer management-system standards: ISO/IEC 42001 for AI was deliberately built to align with it, so an ISO 27001 program is frequently the foundation a company extends into AI and privacy governance. Roles that require it want people who can build and run an ISMS, manage the control set, and carry an organization through certification and surveillance audits.
ISO/IEC 27001: Frequently Asked Questions
What is ISO/IEC 27001?
It is the international standard for an Information Security Management System (ISMS), specifying a risk-based set of requirements that an organization can be independently certified against.
What is the difference between ISO 27001 and SOC 2?
ISO 27001 is a certifiable international standard for a security management system. SOC 2 is an AICPA attestation report common in North America. Many companies pursue both for different markets.
Is ISO 27001 certification required?
It is voluntary, but it is frequently required by international customers and partners and is often the practical baseline for doing business in many markets.
Open ISO/IEC 27001 GRC roles (36)
GRC and AI Governance - Senior Manager
CFGI
Hybrid · Jacksonville, FL · Remote · Full-time
AI Governance CISM CRISC CISSP Posted Jun 13, 2026
Governance, Risk & Compliance (GRC) Manager
Sigma Computing
On-site · San Francisco, CA · Full-time
$190k to $215k Featured Governance Posted Jun 13, 2026
Manager, GRC Subject Matter Experts, Product
Vanta
Remote · Raleigh, NC · Remote · Full-time
Featured Governance Posted Jun 13, 2026
Security Risk Analyst
College Board
Remote · Remote · Full-time
Featured Risk CISA CISM CRISC Posted Jul 7, 2026
RMF/GRC Program Lead
Chickasaw Nation Industries
Remote · Remote · Full-time
$140k to $150k Featured Governance Clearable CISA CISM CRISC Posted Jul 7, 2026
Chief Information Security Officer
Texas Children's Hospital
On-site · Houston, TX · Full-time
Featured Governance CISM CISSP Posted Jul 14, 2026
Security GRC Manager
Hex
Remote · Remote · Full-time
$182k to $295k Featured Governance Posted Jun 29, 2026
Senior GRC Specialist
Cohere
On-site · Toronto · Full-time
$140k to $220k Featured Governance Posted Jun 13, 2026
Governance, Risk & Compliance (GRC) Manager
Sigma Computing
On-site · New York City, NY · Full-time
$190k to $215k Featured Compliance CISA CISM CRISC Posted Jun 22, 2026
Senior AI GRC Engineer
Vanta
Remote · . · Remote · Full-time
Featured AI Governance Posted Jun 13, 2026
Senior Manager, GRC Subject Matter Experts, Product
Vanta
Remote · . · Remote · Full-time
Featured Governance CISA CISSP CIPM Posted Jun 13, 2026
Senior GRC Lead
Brex
On-site · Vancouver, British Columbia, Canada · Full-time
$154k to $192k Featured Governance CISA CISSP Posted Jun 26, 2026
EMEA Assurance Lead
Scale AI
On-site · Doha, Qatar · Full-time
Featured Governance Clearable CISA CISM CISSP Posted Jun 28, 2026
Senior Compliance Advisor
Drata
Remote · Remote · Full-time
Featured Compliance CISA CRISC CISSP Posted Jun 13, 2026
Security GRC Manager: Customer Trust Enablement
Sierra
On-site · San Francisco, CA · Full-time
Featured Governance CISA CISM CRISC Posted Jun 13, 2026
IT Governance, Risk & Compliance (GRC) Specialist, Luxembourg
Stripe
On-site · Luxembourg · Full-time
Featured Compliance Posted Jun 13, 2026
Senior Security Engineer, GRC Automation
1Password
Remote · Canada · Remote · Full-time
$153k Featured Governance CISA CISSP Posted Jun 20, 2026
Senior Software Engineer, Trust and Third Party Risk Management
Vanta
Remote · . · Remote · Full-time
Featured Risk Posted Jun 26, 2026
Security Controls Assurance Lead
Anthropic
On-site · San Francisco, CA, NY Washington · Full-time
$345k Featured Governance Posted Jun 20, 2026
Senior Security Analyst, Customer Assurance
Plaid
On-site · New York City · Full-time
Featured Governance Posted Jul 3, 2026
Sr. Compliance Analyst
Cohere Health
On-site · Hyderabad, Telangana, India · Full-time
Featured Compliance Posted Jun 13, 2026
Senior Manager, Security Compliance
GitLab
Remote · Remote · Full-time
$168k Featured Compliance CISA CISM CISSP Posted Jul 3, 2026
Security Compliance Architect
Zscaler
Remote · Remote · Full-time
$144k Featured Compliance Posted Jul 3, 2026
Governance Risk and Compliance
Figma
On-site · San Francisco, CA, NY • · Full-time
$153k Featured Compliance CISA CISM CRISC Posted Jun 13, 2026
Staff+ Software Engineer, GRC Platform
Anthropic
On-site · San Francisco, CA, NY Seattle · Full-time
$405k Featured Governance Posted Jun 13, 2026
Senior GRC Analyst
Garner Health
Remote · Remote · Full-time
$143k to $165k Featured Governance CISA CISM CRISC Posted Jul 3, 2026
Head of Global Assurance
Scale AI
On-site · Washington, DC · Full-time
Featured Governance Clearable CISA CISM CISSP Posted Jun 20, 2026
Senior Manager, Customer Trust & Security Governance
GitLab
Remote · Remote · Full-time
$168k Featured Governance Posted Jul 3, 2026
GRC Specialist
Collibra
On-site · New York, NY · Full-time
$88k to $110k Featured Governance CISA CRISC CISSP Posted Jun 17, 2026
Staff+ Security Engineer, Risk Engineering
Anthropic
On-site · San Francisco, CA, NY Seattle · Full-time
$320k Featured Risk Posted Jun 13, 2026
GRC Pre-Sales Consultant / Solutions Engineer – DACH market, EMEA
Vanta
On-site · London, UK · Full-time
Featured Governance Posted Jun 28, 2026
Senior Manager, Audit Partnerships
Vanta
Remote · . · Remote · Full-time
Featured Audit Posted Jun 13, 2026
Senior GRC Program Manager
Ripple
On-site · Luxembourg · Full-time
Featured Governance CISA CISSP Posted Jun 20, 2026
Tech Governance - Security Compliance & Governance Engineer
OKX
On-site · Hong Kong, Hong Kong SAR · Full-time
Featured Compliance CISA CISM CRISC Posted Jun 20, 2026
IT CYBERSECURITY SPECIALIST (INFOSEC)(T32)
Army National Guard Units
On-site · Montgomery, Alabama · Full-time
$106k to $138k Featured Cybersecurity Posted Jun 25, 2026
Director of Security, GRC
Aledade
Remote · Remote · Full-time
Featured Governance CISA CISM CRISC Posted Jun 13, 2026