We hire curious technologists who care about independence, clarity, and velocity. If you want to write opinions and reports that clients actually use—not shelve—we should talk.
Culture
We compete for talent with the largest firms in the world—and win by offering technical depth, partner access, and a culture that respects deep work.
Structured promotion paths, paid certifications (CPA, CISA, CISSP, OSCP, ISO lead auditor), and mentorship from partners who still carry fieldwork responsibility. You will not plateau in a back office—you will own client segments.
We invest in evidence automation, secure AI-assisted review workflows, and integrations with Vanta, Drata, and Secureframe. Engineers and auditors collaborate on internal tools that make engagements faster and more defensible.
Your work lands in data rooms, procurement reviews, and regulator files. Clients are technology companies whose products millions of people rely on. The bar is high—and the feedback loop from real deployments is immediate.
Split time between Dubai, New York, and Paris hubs, support clients across six continents, and build fluency in AICPA, ISO, and EU regulatory regimes. Travel is purposeful, not performative; we optimise for outcomes, not airline status.
Open roles
Roles update frequently as we grow all three hubs. If your background is close but not exact, we still encourage you to reach out—many of our best hires arrived through non-linear paths.
Lead SOC 2 Type II fieldwork for cloud-native SaaS and fintech clients. Partner with solutions architects on control design narratives, evidence automation, and draft report cycles within accelerated timelines.
Plan and execute certification audits under our accredited CB programme, including stage 1 and stage 2 assessments, technical review input, and client briefings for ISO 27001 and aligned standards.
Deliver network, application, and cloud penetration tests; contribute to AI red teaming exercises; and translate technical findings into executive summaries that align with our attestation and GRC clients.
Advise US and multinational technology companies on CCPA/CPRA, GDPR interfaces, and cross-border transfer mechanisms. Support ISO 27701 engagements and privacy programme maturity assessments.
Lead PCI DSS, NESA, and ADHICS programmes for regional enterprises and global platforms operating in the Gulf. Coordinate with our New York and Paris specialists on multi-jurisdiction clients.
Deliver GDPR advisory, DPIA assessments, and cross-border data transfer programmes for EU and international technology companies. Support NIS2 readiness and EU AI Act compliance from our Paris hub.
ABM Audit is an equal opportunity employer. We evaluate candidates on skill, judgment, and alignment with our professional standards—regardless of background, nationality, or non-job-related factors.
Send your CV and a short note on what you want to build with us—we maintain a pipeline for senior hires across practices.
