RSI Security

WE ARE HIRING

AI Governance Lead Auditor (ISO/IEC 42001)

About Us

RSI Security is a leader in cybersecurity compliance and conformity assessment. We operate an independent Certification Body (CB) aligned with ISO/IEC 17021-1 requirements and are currently pursuing accreditation for ISO/IEC 42001 (Artificial Intelligence Management Systems).

We maintain strict separation between our certification and advisory entities to protect the integrity and independence of every audit. Our mission is to build a rigorous, globally respected AI governance certification program that ensures AI Management Systems (AIMS) are assessed with impartiality and technical depth.

About the Role

As an AI Governance Lead Auditor, you will lead independent certification audits of client Artificial Intelligence Management Systems (AIMS) against ISO/IEC 42001. This is a dedicated Certification Body role and is distinct from consulting, advisory, or implementation activities. You will lead audit teams in evaluating complex AI lifecycles, including training, validation, deployment, monitoring, and decommissioning.

Your role is to evaluate objective evidence and determine conformity to ISO/IEC 42001 requirements. Audit conclusions directly inform the independent Certification Decision process. Certification decisions are made by a separate, authorized function to preserve impartiality and comply with ISO/IEC 17021-1 requirements. Depending on competence and authorization status, this role may also include service as an independent Certification Decision Maker for engagements in which the individual did not participate as an auditor.

What You’ll Do

• Lead Rigorous Certification Audits: Plan and execute Stage 1 and Stage 2 audits, applying the specialized requirements of ISO/IEC 42006. This includes risk-based sampling and the evaluation of AI risk management integration (ISO/IEC 23894).
• Navigate the AI Lifecycle: Assess governance effectiveness across the entire AI pipeline, identifying and grading nonconformities with precision and technical depth.
• Uphold Impartiality Guardrails: Operate under RSI’s formal impartiality controls. This includes strict adherence to "cooling-off" periods for former advisory clients and regular conflict-of-interest attestations to safeguard the CB’s independence.
• Engage with Accreditation Oversight: Participate in periodic accreditation body witness audits, demonstrating audit methodology and technical competence under external oversight as part of our accredited certification activities.

Competence & Authorization

Authorization to perform audits at RSI is a formal status granted through our documented competence evaluation and authorization framework. Candidates will undergo a structured review of:

• Technical Domain Expertise: Proven knowledge of AI architectures, data governance, and model validation.
• Standard Mastery: Proficient application of ISO/IEC 17021-1, 42001, and 42006.
• Performance Monitoring: Continuous authorization is maintained through ongoing performance monitoring, including workpaper reviews and witnessed audit evaluations.

What You’ll Bring

• Experience: 7+ years in GRC, cybersecurity, or management system assessment. Proven experience leading audit teams and managing complex client stakeholders is essential.
• Certifications: ISO/IEC 42001 Lead Auditor certification is preferred. Candidates with active ISO Lead Auditor credentials (such as ISO 27001 or 9001) and demonstrated AI governance experience will be considered, provided they are prepared to obtain ISO/IEC 42001 authorization.
• Technical Acumen: A deep understanding of AI lifecycle governance, SaaS/Enterprise AI architectures, and the nuances of algorithmic bias and impact assessments.
• Integrity: A commitment to the "Certification Mindset"—valuing objective evidence and professional skepticism over advisory-style problem-solving.

Why Join RSI?

You will be joining one of the emerging leaders building ISO/IEC 42001 certification capabilities globally. We offer a 100% remote work environment, access to structured audit workflow tools, and a culture that values technical precision and ethical independence above all else.

RSI Security is an Equal Opportunity Employer. We prioritize competence, qualifications, and the integrity of the certification process in all hiring decisions.

WE ARE HIRING

AI Governance Technical Expert (ISO/IEC 42001)

About Us:

About the Role:

As an AI Governance Technical Expert, you will support ISO/IEC 42001 certification audits by providing specialized subject-matter expertise related to AI lifecycle governance, data governance, and model oversight. This is a Certification Body support role and is distinct from consulting, advisory, implementation, or audit leadership functions. Technical Experts supplement audit team competence but do not independently determine conformity, grade nonconformities, sign audit reports as Audit Team Leader, or participate in certification decisions. You will contribute structured technical analysis to audit teams evaluating AI lifecycles, including design, development, validation, deployment, monitoring, and decommissioning within SaaS and enterprise environments.

Technical Experts may pursue formal auditor authorization through RSI’s documented competence and authorization framework. Any transition to an auditor role requires full completion of competence evaluation, training, witness audit requirements, and formal authorization prior to performing audit or certification decision activities.

What You’ll Do

• Provide Technical Lifecycle Expertise: Support audit teams in evaluating AI governance controls across the lifecycle, including model governance, data governance, human oversight, and risk integration.
• Review Technical Artifacts: Analyze technical documentation, system descriptions, governance frameworks, validation records, and lifecycle evidence to provide structured input to the Audit Team Leader.
• Participate in Audit Interviews: Contribute domain expertise during interviews related to AI model development, validation practices, monitoring controls, and enterprise governance structures.
• Support Risk-Based Evaluation: Assist in assessing alignment with ISO/IEC 23894 AI risk management principles and integration into lifecycle governance processes.
• Operate Within Impartiality Guardrails: Comply with RSI’s formal independence and conflict-of-interest controls, including cooling-off requirements and periodic attestations.
• Engage Under Oversight: Participate in accreditation body witness audits when assigned, demonstrating technical competence under structured external oversight.

Competence & Authorization

Authorization as a Technical Expert is granted through RSI’s documented competence evaluation and authorization framework. Candidates will undergo structured evaluation of:

• AI Technical & Lifecycle Competence: Demonstrated understanding of AI lifecycle stages, model governance concepts, data governance principles, and risk-based AI oversight.
• Sector / Contextual Competence: Familiarity with SaaS / Enterprise AI governance environments, including enterprise IT governance structures and organizational oversight models.
• Independence Verification: Completion of conflict-of-interest screening and confirmation of no prohibited advisory involvement.
• Ongoing Monitoring: Performance review by Audit Team Leaders, quality review of technical input, and periodic independence attestation.

Technical Experts are authorized within defined technical categories and sector scopes. Assignment shall not occur outside authorized domains.

What You’ll Bring

• Experience: 7+ years in AI governance, data governance, model risk management, cybersecurity governance, enterprise risk, or related technical oversight functions.
• AI Governance Depth: Strong understanding of AI lifecycle stages, model validation practices, data lifecycle controls, documentation governance, and human oversight mechanisms.
• Enterprise Context Awareness: Familiarity with SaaS architectures (high-level), enterprise IT governance structures, and organizational AI oversight frameworks.
• Structured Analytical Thinking: Ability to evaluate evidence objectively and provide disciplined, audit-support input rather than advisory recommendations.
• Professional Integrity: Commitment to independence, impartiality, and operating within clearly defined role boundaries.

Why Join RSI?

You will be joining one of the emerging leaders building ISO/IEC 42001 certification capabilities globally. We offer a 100% remote work environment, access to structured audit workflow tools, and a culture that values technical precision and ethical independence above all else.

RSI Security is an Equal Opportunity Employer. We prioritize competence, qualifications, and the integrity of the certification process in all hiring decisions.