Minimum Qualifications:
- Bachelor's degree or above in information security, risk management, engineering, computer and/or data science or any other discipline that combines structured and systematic thinking with user-centric solution-design.
A relevant professional certification (e.g., CRISC, CISM, CISSP, CISA) is highly desirable.
- Minimum of 5 years of experience working across one or more of the following disciplines: enterprise/operational risk management, regulatory compliance, internal/external audit, third-party and vendor risk management, cybersecurity, internal controls and risk optimization or related areas
- preferably in global, fast-growing, and highly regulated industries.
Experience in content moderation, customer support, or online safety within a Trust & Safety or online platform environment is highly preferred.
- Strong understanding of risk assessment methodologies, including qualitative and quantitative techniques.
Experience in developing and implementing risk frameworks and taxonomies within a Trust & Safety environment is highly preferred.
- Deep knowledge of relevant regulations and compliance requirements related to online safety and data privacy (e.g., GDPR, CCPA, AI Risk Governance)
- Excellent program management, communication, and interpersonal skills, with the ability to clearly communicate complex technical and risk issues to a non-technical audience, and execute at consistently high standards within exacting timeframes.
- Proficiency in data extraction and analysis tools (e.g., SQL, Python, R)
- High level of risk awareness, agile mindset and strong sense of ownership and professionalism.
Preferred Qualifications:
- Direct exposure to key industry regulations or legislation such as the Digital Services Act, Digital Markets Act, GDPR, AI Act, etc.
- Experience with data analytics, machine learning, conversational and/or generative AI technologies would be a plus.
- A keen interest in observing emerging social, behavioural and industry trends that could affect how users interact with our platform, and how internal policies and processes could be optimized in response.
