Compliance Specialist

Compliance Specialist We are seeking a remote, full-time SOC 2 Compliance Specialist with expertise in SaaS environments and proficiency in using compliance management platforms (preferably Vanta). The ideal candidate will lead the client's SOC 2 compliance efforts, streamline evidence collection, ensure continuous monitoring, and support security and compliance programs to meet industry standards and customer expectations.
This role requires strong coding fundamentals, system design capability, and the mindset of a builder who thrives in a startup environment. You will work in small, agile teams reporting directly to the CTO, collaborating closely with AI engineers, security leaders, and product managers. Together, you will build and deliver AI-native services delivered at startup speed.
Our client is building an AI-centric operating system for utilities. It harnesses AI at the enterprise level to better orchestrate customer delight, facilitate power optimization, enhance grid health, and unlock flexibility at scale. Funded by a strategic industry partner and one of the founders at Groupon, the client is poised to transform how utilities run and how customers experience energy.

Responsibilities
SOC 2 Compliance Management : Lead the end-to-end process for achieving and maintaining SOC 2 compliance, including scoping, evidence collection, control implementation, and audit preparation using Vanta's platform
Vanta Platform Utilization : Leverage Vanta's AI and automation tools to streamline compliance workflows, monitor controls, and manage vendor risk assessments
Continuous Monitoring : Implement and oversee continuous monitoring processes to ensure ongoing adherence to SOC 2 requirements and other relevant frameworks (e.g., ISO 27001, GDPR)
Policy Development : Develop, update, and maintain security and compliance policies, procedures, and documentation within Vantas' centralized platform
Vendor Risk Management : Utilize Vanta's Vendor Risk Management (VRM) solution to assess and monitor third-party vendors, ensuring compliance with security standards
Audit Support : Collaborate with external auditors to facilitate smooth and efficient SOC 2 audits, utilizing Vanta's tools to provide real-time evidence and reporting
Cross-Functional Collaboration : Work closely with engineering, IT, and product teams to integrate compliance requirements into SaaS product development and operations
Training and Awareness : Conduct training sessions for employees on SOC 2 compliance requirements and best practices for maintaining a secure SaaS environment
Reporting and Metrics : Use Vanta's reporting features to track compliance metrics, generate reports, and communicate the company's security posture to internal stakeholders and external clients
Stay Updated : Keep abreast of evolving compliance frameworks, security standards, and Vanta platform updates to ensure alignment with industry best practices

Required Experience
Excellent English communication skills
3+ years of experience in compliance, information security, or risk management, with a focus on SOC 2 compliance in a SaaS environment
Hands-on experience with Vanta or similar compliance automation platforms
Proven track record of successfully managing SOC 2 audits and implementing controls
Strong understanding of SaaS architecture, cloud security, and data privacy principles
Familiarity with compliance frameworks, such as SOC 2, ISO 27001, HIPAA, GDPR, or NIST CSF
Proficiency in using compliance automation platforms for evidence collection, continuous monitoring, and vendor risk management
Excellent project management and organizational skills to manage complex compliance initiatives
Strong communication skills to liaise with technical teams, auditors, and leadership
Detail-oriented with a proactive approach to problem-solving and process improvement

Desired Experience
Bachelor's degree in Information Technology, Cybersecurity, Business, or a related field (or equivalent experience)
Relevant certifications (e.g., CISA, CISSP, CRISC, or SOC 2-specific training)
Familiarity with Vanta's AI Agent and other advanced features for GRC automation.
Experience working with startups, mid-market, or enterprise organizations in a SaaS environment
Experience working on ERP systems or within the power utilities industry

Additional Information
Enjoy a fun, fast-growing entrepreneurial company
Be part of a highly collaborative learning culture, share knowledge, be inclusive, learn, and grow together. Embrace teamwork
Knowing your ideas are heard and matter, think big
You get to own your job and be recognized for your contributions
Work with innovative and creative people
Making mistakes is human. Let's learn from them. Be transparent
We recognize you as an individual, with no presumptions or judgment. Be the extraordinary you
15 days Paid Time Off (PTO), one floating day, three sick days, and designated national holidays
Start: ASAP

About Velozient
We are a privately held, nearshore software development company providing outsourced development resources to North American companies. Our mission is to offer development talent who enjoy taking on challenging work, want to grow their skills and experiences building software, and excel in a fast-paced, dynamic team environment. We are committed to delivering world-class remote resources that enable our valued client team members to work effectively and efficiently. If this type of opportunity excites you, then consider joining our team