Compliance Expert

Job Opportunity:We are seeking a full-time Compliance Specialist to lead our SOC 2 compliance efforts in SaaS environments.The ideal candidate will have expertise in using compliance management platforms, preferably Vanta.This role requires strong coding fundamentals and the ability to work in a fast-paced startup environment.You will be part of a small, agile team reporting directly to the CTO, collaborating closely with AI engineers, security leaders, and product managers.SOC 2 Compliance Management: Lead the end-to-end process for achieving and maintaining SOC 2 compliance, including scoping, evidence collection, control implementation, and audit preparationVanta Platform Utilization: Leverage Vanta's AI and automation tools to streamline compliance workflows, monitor controls, and manage vendor risk assessmentsContinuous Monitoring: Implement and oversee continuous monitoring processes to ensure ongoing adherence to SOC 2 requirements and other relevant frameworks (e.g., ISO *****)Policy Development: Develop, update, and maintain security and compliance policies, procedures, and documentation within Vanta's centralized platformVendor Risk Management: Utilize Vanta's Vendor Risk Management solution to assess and monitor third-party vendors, ensuring compliance with security standardsAudit Support: Collaborate with external auditors to facilitate smooth and efficient SOC 2 audits, utilizing Vanta's tools to provide real-time evidence and reportingCross-Functional Collaboration: Work closely with engineering, IT, and product teams to integrate compliance requirements into SaaS product development and operationsTraining and Awareness: Conduct training sessions for employees on SOC 2 compliance requirements and best practices for maintaining a secure SaaS environmentReporting and Metrics: Use Vanta's reporting features to track compliance metrics, generate reports, and communicate the company's security posture to internal stakeholders and external clientsStay Updated: Keep abreast of evolving compliance frameworks, security standards, and Vanta platform updates to ensure alignment with industry best practices