Security Compliance Expert

About the Role:We are seeking a highly skilled Compliance Specialist to join our team.The ideal candidate will lead our SOC 2 compliance efforts, streamline evidence collection, ensure continuous monitoring, and support security and compliance programs to meet industry standards and customer expectations.This role requires strong coding fundamentals, system design capability, and the mindset of a builder who thrives in a dynamic environment.You will work in small, agile teams, collaborating closely with technical experts, auditors, and leadership.Key Responsibilities:SOC 2 Compliance Management: Lead the end-to-end process for achieving and maintaining SOC 2 compliance, including scoping, evidence collection, control implementation, and audit preparation using advanced automation toolsCompliance Workflow Optimization: Leverage AI-powered platforms to streamline compliance workflows, monitor controls, and manage vendor risk assessmentsContinuous Monitoring: Implement and oversee continuous monitoring processes to ensure ongoing adherence to SOC 2 requirements and other relevant frameworksPolicy Development: Develop, update, and maintain security and compliance policies, procedures, and documentation within a centralized platformVendor Risk Management: Utilize advanced vendor risk management solutions to assess and monitor third-party vendors, ensuring compliance with security standardsAudit Support: Collaborate with external auditors to facilitate smooth and efficient SOC 2 audits, utilizing real-time evidence and reportingCross-Functional Collaboration: Work closely with engineering, IT, and product teams to integrate compliance requirements into SaaS product development and operationsTraining and Awareness: Conduct training sessions for employees on SOC 2 compliance requirements and best practices for maintaining a secure SaaS environmentReporting and Metrics: Use advanced reporting features to track compliance metrics, generate reports, and communicate the company's security posture to internal stakeholders and external clientsStay Updated: Keep abreast of evolving compliance frameworks, security standards, and technology updates to ensure alignment with industry best practicesRequired Skills and Qualifications:Excellent English communication skills3+ years of experience in compliance, information security, or risk management, with a focus on SOC 2 compliance in a SaaS environmentHands-on experience with advanced compliance automation platformsProven track record of successfully managing SOC 2 audits and implementing controlsStrong understanding of SaaS architecture, cloud security, and data privacy principlesFamiliarity with compliance frameworks, such as SOC 2, ISO *****, HIPAA, GDPR, or NIST CSFProficiency in using compliance automation platforms for evidence collection, continuous monitoring, and vendor risk managementExcellent project management and organizational skills to manage complex compliance initiativesStrong communication skills to liaise with technical teams, auditors, and leadershipDetail-oriented with a proactive approach to problem-solving and process improvementAbout Us:We are a software development company providing outsourced development resources to North American companies.We offer a dynamic work environment that allows individuals to grow their skills and experiences building software.