Job Description:
• Administer and maintain the company’s compliance policies, procedures, and control documentation
• Ensure company processes remain aligned with SOC 2 and ISO 27001 frameworks
• Maintain documentation supporting compliance audits and enterprise diligence requests
• Coordinate the company’s SOC 2 and ISO 27001 audit processes
• Work closely with the CTO and Lead DevSecOps engineer to ensure technical controls and evidence are available for audits
• Act as the primary point of contact with external auditors, coordinating walkthroughs, evidence submission, and remediation tracking
• Lead responses to enterprise security questionnaires and compliance diligence requests
• Support customer security reviews and vendor risk assessments
• Maintain documentation commonly requested by enterprise customers
• Maintain the company risk register and risk tracking processes
• Support processes for incident reporting, escalation, and remediation tracking
• Ensure compliance processes evolve as the company grows
• Maintain documentation and review processes for vendor and third-party risk
• Support vendor diligence required for audits and enterprise customers
Requirements:
• 8–12+ years of experience in compliance, risk management, or GRC
• Experience managing SOC 2, ISO 27001, or similar security/compliance frameworks
• Experience supporting enterprise customer security and compliance reviews
• Experience working with fintech, capital markets technology, or enterprise SaaS companies
Benefits:
• Competitive salary + equity.
• Healthcare coverage.
• 401k
Apply Now
Apply Now