TL;DR

Internal Auditor: Leading audit readiness and execution for compliance frameworks like SOC 2, ISO 27001, and PCI DSS with an accent on managing the compliance lifecycle and coordinating cross-functional audit activities. Focus on designing scalable internal audit programs and embedding compliance thinking into product development.

Location: Fully Remote (Global)

Company

Supabase is a rapidly growing, developer-focused cloud infrastructure product company building open-source tools for developers.

What you will do

  • Lead audit readiness and execution for SOC 2, ISO 27001, and PCI DSS compliance frameworks.
  • Manage the compliance lifecycle, including evidence collection, control mapping, and continuous monitoring.
  • Coordinate cross-functional audit activities with engineering, product, security, and infrastructure teams.
  • Design and implement internal audit programs that scale with rapid growth.
  • Partner with external auditors to facilitate smooth audits and ensure timely certifications.
  • Document policies, procedures, and controls aligning with industry standards.

Requirements

  • 5+ years of experience in internal audit, compliance, or GRC roles, ideally in SaaS or cloud infrastructure.
  • Hands-on experience with SOC 2, ISO 27001, and PCI DSS audits.
  • Proficiency with GRC platforms such as Vanta, Drata, or Secureframe.
  • Ability to translate compliance requirements into practical, developer-friendly processes.
  • Experience in async or globally distributed teams.
  • Strong communication skills across both technical and non-technical audiences.

Culture & Benefits

  • Fully Remote with provided WeWork membership or co-working allowance.
  • Equity ownership (ESOP) for all team members.
  • Tech allowance to set up your ideal work environment.
  • 100% health insurance coverage for employees and 80% for dependents.
  • Annual company off-sites for connection and collaboration.
  • Flexible and asynchronous work environment, trusting you to manage your own time.
  • Annual professional development allowance for learning and growth.

Hiring process

  • Application review.
  • Short intro video call.
  • Up to four interviews with Founders, future teammates, and a cross-functional team member.
  • Decision or final questions.