Job Description
- Job Description:
- Administer and maintain the company’s compliance policies, procedures, and control documentation
- Ensure company processes remain aligned with SOC 2 and ISO 27001 frameworks
- Maintain documentation supporting compliance audits and enterprise diligence requests
- Coordinate the company’s SOC 2 and ISO 27001 audit processes
- Work closely with the CTO and Lead DevSecOps engineer to ensure technical controls and evidence are available for audits
- Act as the primary point of contact with external auditors, coordinating walkthroughs, evidence submission, and remediation tracking
- Lead responses to enterprise security questionnaires and compliance diligence requests
- Support customer security reviews and vendor risk assessments
- Maintain documentation commonly requested by enterprise customers
- Maintain the company risk register and risk tracking processes
- Support processes for incident reporting, escalation, and remediation tracking
- Ensure compliance processes evolve as the company grows
- Maintain documentation and review processes for vendor and third-party risk
- Support vendor diligence required for audits and enterprise customers
- Requirements:
- 8–12+ years of experience in compliance, risk management, or GRC
- Experience managing SOC 2, ISO 27001, or similar security/compliance frameworks
- Experience supporting enterprise customer security and compliance reviews
- Experience working with fintech, capital markets technology, or enterprise SaaS companies
- Benefits:
- Competitive salary + equity.
- Healthcare coverage.
- 401k
Apply Now
Apply Now