About Insight Assurance
Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals, we deliver next-generation audit services across SOC 2, ISO 27001, PCI DSS (QSA), HITRUST, CMMC (C3PAO), and FedRAMP (3PAO) frameworks.

We’re not your traditional audit firm — we’re tech-enabled, leveraging compliance automation and advanced collaboration tools to make audits faster, smarter, and more impactful for our clients.

Recognized on the Inc. 5000 and Fast 50 lists, Insight Assurance is one of the fastest-growing global audit firms, with 170+ professionals supporting nearly 2,000 clients across the Americas, EMEA, and APAC.

POSITION SUMMARY

The ISO Analyst supports the audit and assurance teams in performing ISO 27001 certification assessments and related information security audits. Working under the supervision of an Auditor, Lead Auditor, or Manager, the ISO Analyst assists in audit planning, evidence review, report preparation, and overall quality assurance.

This role requires strong attention to detail, effective communication skills, and a foundational understanding of management systems and information security principles.

KEY RESPONSIBILITIES

General Audit Support

• Ensure that all internal processes are followed correctly and consistently.

• Assist in the creation of audit programs and plans for clients and upcoming audits.

• Support evidence classification, review, and sampling activities.

• Take detailed notes during audits and assist in preparing high-quality reports.

• Send recap and follow-up communications as required.

• Collect statistics and support KPI reporting.

• Communicate effectively with stakeholders at all organizational levels using professional language and terminology.

• Maintain ethics, fairness, and accuracy in all audit documentation and reporting.

• Protect confidentiality of personally identifiable information (PII) and intellectual property (IP) belonging to both the firm and clients.

• Demonstrate professionalism and responsibility in all interactions.

Administrative & Coordination Tasks

• Handle client ingestion and onboarding activities.

• Perform HubSpot data scrubbing and updates.

• Register new engagements in Asana and coordinate Insight ONE transfers (in or out).

• Create SharePoint folders and upload Evidence Lists (EL).

• Follow up on CUP (Client Upload Portal) submissions.

Audit Planning Support (in collaboration with the ISO Manager)

• Follow up on CUP status and pending uploads.

• Send planning call recaps and assist with scheduling.

• Communicate auditor assignments and update Asana tasks.

• Collect and report metrics on Turnaround Time (TAT) for audit plan delivery.

Audit Execution Support (in collaboration with ISO Auditors)

• Ensure auditors have access to necessary GRC platforms and client systems.

Audit Reporting & Quality Assurance (in collaboration with ISO Manager)

• Collect metrics on TAT for archive submissions.

• Register findings in the Universal Registry of Findings.

• Complete archive QA forms and support non-technical QA reviews, including:

  • Audit Report

  • Audit Plan

  • Audit Program

  • Registry of Findings

Certificate & Registry Management

• Handle certificate registration in the appropriate database.

• Maintain IAF CertSearch registrations and updates.

Knowledge Requirements
• Organizational structures, governance, and workplace practices.
• Information and data systems, documentation systems, and IT fundamentals.
• Audit principles, practices, and techniques in accordance with ISO standards.
• Management system standards and normative documents required for certification.
• Certification Body (CB) processes and procedures.
• Industry terminology, practices, and expectations relevant to the client’s business sector.
• Common products, processes, and operations across industries to understand client context.
• Application of management system requirements to various organizational types.
• ISMS-specific documentation structures and interrelationships.
• Information security management tools, methods, and techniques.
• Information security risk assessment and risk management principles.
• ISMS processes and current information security technologies.
• ISO/IEC 27001 requirements and implementation principles.
• ISO/IEC 27002 controls (and sector-specific standards if applicable), including:
• Information security policies
• Organization of information security
• Human resource security
• Asset management
• Access control and authorization
• Cryptography
• Physical and environmental security
• Operations and IT service security
• Communications and network security
• System acquisition, development, and maintenance
• Supplier relationships and outsourced services
• Information security incident management
• Business continuity and redundancy planning
• Compliance and information security reviews
• Legal and regulatory requirements in information security by geography and jurisdiction.
• Information security risks and technologies relevant to the client’s industry.
• The impact of organization size, structure, and governance on ISMS implementation.
• Legal and regulatory requirements applicable to products or services.

Key Competencies
• Attention to detail and analytical thinking
• Written and verbal communication
• Integrity, confidentiality, and professionalism
• Understanding of ISO/IEC 27001 and 27002 standards
• Organizational and time management skills
• Team collaboration and adaptability
• Continuous learning and improvement mindset

What We Offer
• Opportunity to work with global experts in cybersecurity and ISO assurance.
• Exposure to top-tier clients and diverse industries.
• Professional development and certification support.
• Collaborative and remote-friendly work environment.
• Competitive compensation and growth opportunities.

 Privacy Notice CCPA: 

• Insight Assurance shares your personal data/information with Greenhouse recruiting because this is the tool we use for the recruitment process.
• Insight Assurance does not sell personal data/information under any circumstances.
• You may exercise your rights under personal data protection legislation by reaching out to us via: HR@insightassurance.com or submit a request via mail at 400 N Tampa St. 15th Floor Suite 122, Tampa, FL 33602

Privacy Notice GDPR:

This notice informs you about the categories of Personal Data/ Information and the Purpose and Scope of Processing Activities to be undertaken by Insight Assurance (we, us, our), under its job application and recruitment process.

We resort to Greenhouse.com as the platform that supports our recruitment process, and therefore your Personal Data/ Information will be Processed on this tool (hosted, shared with, cross-referenced, accessed by our team); we have in place contractual terms and the commitment of Greenhouse.com that ensures the Security and Confidentiality plus Purpose limitation with regards to the Processing of your Personal Data.

When you reply to one of your job postings, you voluntarily and freely submit your Personal Data to us; this, allied with the fact that the Processing by us (and over Greenhouse.com) of that Personal Data has the sole Purpose of validating your application and proceeding with the inherent scrutiny and decision, allows us to argue having Legitimate Interest as the applicable Legal Basis to undertake the Processing of your Personal Data under this scope.

We are a U.S. based company, hence some or all Personal Data pertaining to you will be hosted in the U.S.

The categories of Personal Data under Processing consist of:

• Identification
• Contact
• Education and Professional
• Interview performance
• Evaluation

You may exercise several Rights as determined under applicable Personal Data Protection legislation, in short:

• Right of Access – meaning getting information about the Personal Data under Processing by us, except for the information you already know;
• Right of Erasure – you may ask for us to erase all Personal Data pertaining to you under Processing; this may imply you being excluded from the recruitment process, for without information we cannot proceed with it;
• Right of Opposition or Restriction of Processing – you may ask us to stop some Processing or restrict the Processing of some Personal Data, this may imply you being excluded from the recruitment process, at our sole discretion also for without information we cannot proceed with it;
• Rectification – you can rectify your Personal Data at anytime 

The Company 

At Redpin we simplify life's most important payments. Buying a new property overseas can be a stressful time, especially when it comes to moving your money. Through our Currencies Direct and TorFX brands we've been helping people do just that for over 25 years. With recent investment we're now on a mission to build a new range of digital products and services that will make moving money Internationally for Real Estate purchases even easier.

We’re on a mission to become the solution for Real Estate payments everywhere. To do this, we are transitioning our business from a horizontal FX platform to a verticalized, embedded software company, as we look to the future and Redpin 2.0 

Role background 

We are looking for a Head of Regulatory to join our team in Spain to support the Global Head of Compliance (GHC) in managing the Group’s Regulatory Compliance framework. The job holder would also be supposed to be the local representative before the Spanish regulator (Bank of Spain) and Spanish AML authorities (SEPBLAC). 

This role will partner with legal, Compliance Operations, Product and various teams in London, Penzance, Orlando, Spain, South Africa and Australia. The role provides an exciting opportunity to work on an international stage and join a rapidly growing FinTech company making a real impact on the lives of people in developed and emerging markets alike. The role will report to the GHC, offering a direct access to the firm's senior management.

Although initially a standalone position, the role is supposed to manage people in the near future. Managerial experience is, therefore, highly desirable.

What you’ll do

• Represent the Company before the Spanish local authorities (Bank of Spain, SEPBLAC).
• Responsible for all regulatory activities related to our Spanish license, through which the company provides services throughout all the EEA. 
• Help the GHC in ensuring that implementation of the various local compliance programs is risk-based, efficient and consistent with the groupwide regulatory compliance framework. This includes drafting and maintaining global and local policies and processes.
• Coordinate internally and support the GHC in the implementation of regulatory programs, fundamentally at EEA and UK level (e.g. DORA, Operational resilience, Consumer Duty, Fraud prevention, AML, Sanctions etc.).
• Report to internal governance bodies on matters related to the group regulatory compliance framework and on Spanish local regulatory exposure.
• Arrange processes to assure that the regulatory compliance policies in place are well understood and respected by relevant employees and that the company is complying with all regulatory requirements everywhere it operates. 
• Work alongside the Head of Global Operational Compliance to ensure close alignment.
• Subject matter expert on Regulatory Compliance for Spain. 

What You’ll need 

5-10 experience in payments compliance with strong focus on non-financial risk.Proven experience as Regulatory and/or Compliance Manager in similar organizations.

• Expertise on Payment Services Regulations, AML-CFT Regulation at an international level in EEA (must have) and UK (strong plus). Experience in payments regulation in other global markets (US, Canada, South Africa, Australia) and fx would be a great addition.
• Demonstrable experience dealing with payments government agencies/ regulators namely Spain/EEA (UK would a strong plus). Other global regulatory exposure would be desirable.Track record in managing global compliance programs with multiple licenses, as well as coordinating cross-functional teams in multiple jurisdiction and time zones. 
• A strategic thought process with the gravitas to influence leaders at all levels of seniority
• Able to support the development of new product and services via compliance by design and efficient risk management practices, where a balance between risk mitigation and business convenience must be struck.Reasonably good knowledge of data analysis and forecasting methods.Ability to strategize and solve problems.Expert in drafting legal and regulatory policies and procedures.
• Proficiency in English is a must. A native or near native domain of Spanish would be a strong plus. 

We welcome people from all backgrounds who seek the opportunity to help build a future where we connect the dots for international property payments. If you have the curiosity, passion, and collaborative spirit, work with us, and let’s move the world of PropTech forward, together.

Redpin, Currencies Direct and TorFX are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, colour, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

Shift Technology : 

Shift is the leading AI platform for insurance. Shift combines generative, agentic, and predictive AI to transform underwriting, claims, and fraud and risk - driving operational efficiency, exceptional customer experiences and measurable business impact. Trusted by the world's leading insurers, Shift delivers AI when and where it matters most, at scale and with proven results.

The Data Science Team🤖: 

The Data Science team works on a broad range of subjects. We actively participate in the definition and development of our suite of products on fraud detection, anti-money laundering and claim automation.  We have a lot of technical and professional experience in data science, data engineering, coding, business understanding and client interactions. Additionally, we also work on various data types such as structured data, free text, documents and images.

Your key responsibilities will include🧑‍💻:

• Setting up and deploying data processing pipelines, such as data reception (batch or real-time), data cleaning, information extraction, and calibration of fraud detection models.
• Collaborating with clients to understand their needs and incorporating their feedback to enhance our solutions.
• Conducting R&D to drive product innovation (machine learning, NLP, image analysis, trend analysis, chatbots, etc.).
• Supporting the sales team by participating in prospect demos.
• Partnering in an entire Data Science product lifecycle : Understand how sales, legal, product, engineering are connected together to deliver an AI product to clients.

Your profile and requirements✅: 

• You are currently enrolled as a master's degree student in either Mathematics,  Statistics, Computer Science, Machine learning and/or Big Data.
• You must be able to provide an internship agreement (convenio de prácticas) signed by your school or university for 6 months and you are able to start your internship around August 31th in Madrid. 
• You have experience in object-oriented programming (OOP) such as prior internship, school and/or personal projects so you can write quality production code. An experience using C# is a plus.
• You are comfortable dealing with clients.
• Spanish is mandatory at a fluent level and you can communicate clearly in English. French is not mandatory. 

Why join Shift Technology as a Data Scientist Intern ? 

🤸‍♀️Flexibility, autonomy  and adaptability are part of our core values : We are a horizontal organization without bureaucracy (40% of staff are data scientists) but optimal and reduced line management, focus on delivery and development while having a hybrid model.

🧠Learn from inside an AI leader tech company : Join the 13th French Licorne providing hands on training, workshop and sessions with highly experienced AI research Team.  

💶Your commitment, our investment : 1800€ gross monthly gratification, high  conversion rate to full time employee, dedicated HR partner, regular reviews and feedback sessions with your team.

🌍Be part of an international and diverse tech firm : Full english speaking environment with 55 different nationalities across the world and 11 offices locations (Paris, Singapore, Tokyo, Sao Paulo, Mexico City, Boston, Madrid, London, Toronto, Berlin...)

🤝Dealing with big clients and developing business skills & knowledge : Real life experience with Insurance business challenges inside the world of AI.  

What is next ? 🎯

If your application and experience meet our requirements, you can expect :

• Talent Acquisition interview (30 min)
• Technical interview 1 (60 min) 
  Technical interview 2 (60 min) 
• Hiring manager interview (60 min)

The interview process can take 2 to 3 weeks, depending on the interviewer's availability. Be sure that we are doing our best to get back to you with an answer as fast as possible. If you are not getting an update on your application after 10 days, please reach out to our email address. 

About the Role:

The Strategic Partner Manager will own a portfolio of Growth focused agency partners. This includes managing the day-to-day interactions and building relationships with agency partners.  Additionally, enabling Shopify system integrators and digital agencies in Southern Europe who will implement, refer and manage Bloomreach solutions.

This is a quota carrying role for someone who is passionate about creating and building partnerships that are mutually beneficial, driving sourced and influenced revenue.  The role will facilitate collaboration between agency partners and align cross functionally with Sales, Customer Success, Enablement, Delivery, and Marketing, to drive success.  This role reports into the Associate Director, Agency Partnerships. 

What you'll Do:

• Build, own and grow a portfolio of agency partnerships and drive value with those partners 
• Generate partner sourced pipeline and influenced business, achieving quarterly targets  
• Support partner through entire sales cycle- qualifying opportunities, joint co-selling with Bloomreach sales team, and post implementation
• Create strategic business plans with partners, outlining mutual goals related to generating revenue, marketing initiatives, and partner enablement
• Develop strategic enablement and “market to” plans with partners to educate them on Bloomreach’s capabilities, drive awareness, and ensure our solutions are top of mind
• Create scalable and effective partner marketing activities that drive revenue
• Identify the right partners to recruit and develop an outbounding strategy and a clear onboarding plan that activates the partners quickly to drive sourced revenue 
• Build strong relationships with internal team members to meet objectives and targets
• Facilitate collaboration between Bloomreach Sales, Marketing, Account Management, Delivery teams and partners
• Nurture relationships with partners by proactively attending industry conferences, partner events, and hosting “Bloom Enablement Sessions” to equip the partners under your portfolio.
• Evaluate potential partnership opportunities based on market dynamics, customer impact, and strategic unlock partners who would provide with their credibility and clientele they bring with them.

What you'll Need:

• 3+ years of quota-carrying experience in Channel Sales selling software or software-as-a-service (SaaS)
• At least 3-5 years of selling or partnerships in Commerce, Marketing agency or technology companies 
• Travel: Estimated 20-40% (variable)
• Marketing and full cycle sales background is a plus 
• Deep knowledge of online/internet/digital marketing technology  and eco-system
• A proven track record of meeting and exceeding revenue quota
• Well-established presence in the industry with a strong network to leverage
• Be a builder.  Someone with enormous energy who thrives on building trusting partnerships that are mutually beneficial for both Bloomreach and the partners
• Ideally have experience in collaborating with C level executives at top digital marketing and commerce agencies
• Have a desire to learn, coachable and carry a natural curiosity that serves as the driving force in having command in Bloomreach, the ecosystem we are in and how to heavily integrate our partnerships to play a key aspect in this growth trajectory
• Detail oriented, relationship-building skills with a passion for building new relationships and drive towards mutual benefits and goals
• The ability to adapt to new environments and use your own initiative
• Excellent written and verbal communication skills, including high-caliber presentation skills
• Highly organized, strong time management skills, positive attitude
• Native or Fluent Italian & Spanish additionally required 

Excited? Join us and transform the future of commerce experiences.

#LI-SF1