Audit and Customer Assurance Lead

IT Services and Security
Tuzla, Bosnia and Herzegovina

Ready to create a healthier world? We are ready for you! Personify Health is on a mission to simplify and personalize the health experience to improve healthand reduce costs for companies and their people. At Personify Health, we believe in offering total rewards, flexible opportunities, and a diverse inclusive community, where every voice matters. Together, we’re shaping a healthier, more engaged future.

We're seeking an experienced professional who can serve as the critical liaison between our Governance, Risk & Compliance team and customer-facing operations. As our Audit & Customer Assurance Lead, you'll manage customer audit engagements while ensuring seamless compliance responses that build trust and strengthen client relationships.

What makes this role different

✓
Strategic bridge role: Connect GRC expertise with customer-facing teams to deliver seamless audit and compliance experiences

✓
Client trust building: Serve as primary GRC contact for customer audits, building confidence through transparent, thorough responses

✓
Process optimization: Own end-to-end audit processes while identifying automation opportunities and response management improvements

✓
Cross-functional leadership: Coordinate with Sales, Legal, Security, and Engineering teams to streamline responses and reduce friction

Lead customer engagement: Serve as primary GRC contact for customer audits and assessments while managing responses to security questionnaires, RFPs, and due diligence documents.

Coordinate stakeholder collaboration: Partner with internal teams to gather accurate, timely evidence and responses while providing audit walkthroughs and documentation to customers.

Manage audit processes: Own end-to-end customer-facing audits and compliance requests while maintaining organized audit response repository for reuse across engagements.

Drive documentation excellence: Collaborate on Trust Center development and maintenance while ensuring external-facing security documentation and compliance reports remain updated and accessible.

Optimize continuous improvement: Identify repeatable processes and contribute to automation tools (Whistic, Drata, Loopio) while defining and tracking KPIs for audit completion and turnaround times.

Ensure framework alignment: Maintain knowledge of regulatory requirements (HIPAA, HITRUST, SOC, GDPR) while supporting readiness efforts and evidence collection for audits.

What You Bring to Our Mission

The foundational experience:

• Bachelor's degree in Information Security, Business, or related field
• 4+ years experience in GRC, IT audit, information security, or compliance
• Experience responding to customer audits and managing cross-functional stakeholders

The technical expertise:

• Familiarity with frameworks including SOC 2, ISO 27001, NIST CSF, HITRUST, HIPAA
• Understanding of cloud environments (AWS, Azure, GCP) and SaaS models preferred
• Experience with tools such as Drata, Whistic, Loopio, Salesforce, Jira, and SharePoint preferred

The professional competencies:

• Excellent written and verbal communication with strong organizational and project management skills
• Ability to handle sensitive information with discretion while maintaining customer-centric mindset
• Strong problem-solving abilities with talent for managing complex stakeholder relationships
• Capability to coordinate evidence collection and ensure customer concerns align with control coverage

Ready to create a healthier world? We are ready for you.

Personify Health is an equal opportunity organization and is committed to diversity, inclusion, equity, and social justice.

We strive to cultivate a work environment where differences are celebrated, and employees of all backgrounds are empowered to thrive. Personify Health is committed to driving Diversity, Equity, Inclusion and Belonging (DEIB) for all stakeholders: employees (at each organization level), members, clients and the communities in which we operate. Diversity is core to who we are and critical to our work in health and wellbeing.