About the Role
We're looking for an experienced IT & Compliance Specialist to own and scale our security compliance program while managing internal IT operations. You'll work closely with Engineering, Operations, and Leadership, supported by the CTO and a part‑time consultant with deep SOC 2 and MDM expertise, but day‑to‑day ownership is yours.
Key Responsibilities
SOC 2 Compliance (Primary Priority)
- Own and maintain the SOC 2 compliance program: continuous monitoring, audit readiness, evidence collection, and control tracking
- Administer Vanta as the primary compliance automation platform, it needs work, and cleaning it up is part of the job
- Conduct regular access reviews and ensure documentation is complete and accurate
- Facilitate tabletop exercises covering scenarios like AWS outages, cyber incidents, and availability failures
- Manage vendor relationships: Vanta contract, ...