About this role
Lead enterprise trust and AI governance by architecting automated control frameworks and establishing internal AI risk guardrails. Transition compliance from manual audits to continuous automated monitoring and provide executive technical advisory to CIO and CISO stakeholders.
Key Responsibilities
- Architect and lead automated control frameworks across enterprise systems
- Develop and operationalize internal AI governance for internal usage and third-party AI integrations
- Transition fragmented ITGCs into the Common Control Framework
- Lead internal and external audit engineering with high-fidelity automated evidence
- Define and report KRIs for compliance and AI risk posture
Technical Overview
This is a technical governance and audit engineering role: designing real-time evidence collection and risk monitoring, centralizing ITGCs into a Common Control Framework, and creating automated testing that satisfies SOX, SOC2, and ISO requirements. It also covers internal AI governance frameworks aligned to NIST and ISO 42001, supported by automation via APIs, Python, SQL, and iPaaS.
Ideal Candidate
The ideal candidate is a senior technical governance leader with 10+ years of experience in GRC, IT audit, or trust engineering, and a proven record scaling compliance programs. They architect automated control frameworks for real-time evidence collection and lead internal AI governance, including third-party AI risk management aligned to NIST and ISO 42001.
Must-Have Skills
10+ years in GRCIT Auditor Trust Engineeringscaling compliance programsarchitect and lead implementation of automated control frameworksenterprise AI governance for internal AI usage and third-party AI integrationstransition ITGCs into the Common Control Frameworkdefine and report KRIs (Key Risk Indicators)
Nice-to-Have Skills
leveraging automation tools (APIsPythonSQLor iPaaS)implementing AI governance frameworks (NISTISO 42001) in an internal corporate context
Tools & Platforms
APIsPythonSQLiPaaS (integration platform as a service)
Required Skills
GRCIT AuditTrust Engineeringautomated control frameworksCommon Control FrameworkITGCsSOXSOC2ISOevidence collectionrisk monitoringinternal AI governancethird-party AI integrationsKRIsAPIsPythonSQLiPaaSNISTISO 42001audit engineeringcontinuous automated monitoring
Hard Skills
GRCIT auditTrust engineeringinternal control frameworksautomated control frameworksevidence collectionrisk monitoringinternal AI governancethird-party AI integrationsdata integritydata securityethical alignmentCommon Control FrameworkITGCsautomated testingevidence reuseSOXSOC2ISOaudit engineeringautomated evidencecontinuous automated monitoringKRIs (Key Risk Indicators)metrics-driven governanceAPIsPythonSQLiPaaS (integration platform as a service)automate financial controlsregulatory requirements to technical roadmapsNISTISO 42001
Soft Skills
strategic leadershipexecutive advisoryinfluencing VP-level stakeholderscross-functional executive partnershipcommunication masterytranslation of complex regulatory requirementstechnical roadmap developmentstakeholder management
Keywords for Your Resume
PrincipalEnterprise Trust & AI GovernanceEnterprise TrustAI GovernanceTrust EngineeringGRCIT Auditautomated control frameworksCommon Control FrameworkITGCsSOXSOC2ISOaudit engineeringautomated monitoringKRIsKey Risk Indicatorsinternal AI governanceNISTISO 42001APIsPythonSQLiPaaSintegration platform as a serviceCIOCISOthird-party AI integrationsdata integrityrisk monitoring
Deal Breakers
Less than 10 years experience in GRC, IT Audit, or Trust Engineering
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile