Internal Auditor

## About the Role Supabase is seeking an experienced Internal Auditor to join its Security & Compliance team. As a key member of the team, you will play a crucial role in strengthening the company's governance, risk, and compliance posture.

## Responsibilities - Lead audit readiness and execution for SOC 2, ISO 27001, PCI DSS, and other compliance frameworks - Manage the compliance lifecycle, including evidence collection, control mapping, and continuous monitoring - Coordinate cross-functional audit activities with various teams to gather evidence and remediate findings - Design and implement internal audit programs that scale with the company's rapid growth - Partner with external auditors to facilitate smooth audits and ensure timely completion of certifications

## Requirements - 5+ years of experience in internal audit, compliance, or GRC roles, ideally in fast-growth SaaS or cloud infrastructure companies - Understanding of modern engineering practices and how they can be leveraged for compliance - Hands-on experience with SOC 2, ISO 27001, and other relevant compliance frameworks

- Highlight your experience: Emphasize your background in compliance, risk, and governance, especially in fast-growth SaaS or cloud infrastructure companies.

• Showcase your understanding of regulatory frameworks: Demonstrate your knowledge of SOC 2, ISO 27001, PCI DSS, and other relevant compliance standards.
• - Prepare to discuss audit processes: Be ready to explain your approach to managing audit readiness, execution, and remediation of findings.
• - Demonstrate your ability to work in async environments: Showcase your experience working in asynchronous, fast-paced environments and your ability to collaborate with cross-functional teams.
• - Be prepared to discuss your experience with compliance platforms: Highlight your experience with tools like Vanta or Drata, and your ability to manage the compliance lifecycle effectively.