Security Compliance Lead

Job Summary

A company is looking for a Security & Compliance Lead to manage security governance and compliance operations.

Key Responsibilities

• Oversee day-to-day operations of the SOC 2 Type II compliance program, including evidence collection and audit readiness
• Serve as the security & compliance subject matter expert for engineering and product teams, maintaining internal documentation
• Coordinate annual third-party penetration testing and manage the customer-facing Trust Center for security disclosures

Required Qualifications

• 4+ years of experience in security compliance, GRC, or a related function, preferably in a B2B SaaS environment
• Hands-on experience with SOC 2, ISO 27001, GDPR, CCPA/CPRA, or similar compliance frameworks
• Experience with GRC platforms like Vanta, Drata, or Tugboat Logic
• Proven ability to manage security questionnaires and vendor risk assessments
• U.S. residency is required for this position