Chief Compliance Officer

Job SummaryWe are seeking a seasoned compliance expert to lead our SOC 2 compliance initiatives.As Compliance Specialist, you will be responsible for managing the end-to-end process for achieving and maintaining SOC 2 compliance.SOC 2 Compliance Management: You will oversee the entire SOC 2 compliance process, including scoping, evidence collection, control implementation, and audit preparation.Vanta Platform Utilization: Leverage Vanta's AI and automation tools to streamline compliance workflows, monitor controls, and manage vendor risk assessments.Continuous Monitoring: Implement and oversee continuous monitoring processes to ensure ongoing adherence to SOC 2 requirements and other relevant frameworks.Policy Development: Develop, update, and maintain security and compliance policies, procedures, and documentation within our centralized platform.Vendor Risk Management: Utilize Vanta's Vendor Risk Management (VRM) solution to assess and monitor third-party vendors, ensuring compliance with security standards.Audit Support: Collaborate with external auditors to facilitate smooth and efficient SOC 2 audits, utilizing Vanta's tools to provide real-time evidence and reporting.Cross-Functional Collaboration: Work closely with engineering, IT, and product teams to integrate compliance requirements into SaaS product development and operations.Training and Awareness: Conduct training sessions for employees on SOC 2 compliance requirements and best practices for maintaining a secure SaaS environment.Reporting and Metrics: Use Vanta's reporting features to track compliance metrics, generate reports, and communicate the company's security posture to internal stakeholders and external clients.About YouExcellent English communication skills.3+ years of experience in compliance, information security, or risk management, with a focus on SOC 2 compliance in a SaaS environment.Hands-on experience with Vanta or similar compliance automation platforms.Proven track record of successfully managing SOC 2 audits and implementing controls.Strong understanding of SaaS architecture, cloud security, and data privacy principles.Familiarity with compliance frameworks, such as SOC 2, ISO *****, HIPAA, GDPR, or NIST CSF.Proficiency in using compliance automation platforms for evidence collection, continuous monitoring, and vendor risk management.Excellent project management and organizational skills to manage complex compliance initiatives.Strong communication skills to liaise with technical teams, auditors, and leadership.Detail-oriented with a proactive approach to problem-solving and process improvement.