Remote Security & Compliance Lead (Remote - US)

Posted 2 hours ago 0 applied

Description:

The Security & Compliance Lead is a high-impact position responsible for leading security governance, compliance operations, and customer trust initiatives.
This role involves partnering closely with engineering, legal, and leadership teams to build scalable security practices and embed compliance early in product development.
The ideal candidate will thrive in a fast-paced, remote-first environment, translating complex policy into actionable processes while strengthening the organizational security posture.
Responsibilities include managing day-to-day operations of SOC 2 Type II compliance, serving as a subject matter expert for engineering and product teams, and coordinating annual third-party penetration testing.
The role also involves maintaining the customer-facing Trust Center, reviewing procurement and vendor contracts, responding to security questionnaires, and conducting risk assessments.
The candidate will promote security awareness and stay informed about emerging threats and evolving compliance obligations.

A minimum of 4 years of experience in security compliance, GRC, or a related function, ideally in a B2B SaaS environment is required.
Hands-on experience with compliance frameworks such as SOC 2, ISO 27001, GDPR, and CCPA/CPRA is essential.
Experience supporting or administering a GRC platform like Vanta, Drata, or Tugboat Logic is necessary.
The candidate must be skilled in managing security questionnaires, audit evidence collection, and vendor risk assessments.
Strong written communication skills are required to translate complex compliance requirements into clear guidance.
The candidate should be comfortable working cross-functionally with engineering, legal, auditors, and customers.
A proven track record of maintaining or building Trust Centers and compliance documentation is needed.
The candidate must be U.S.-based and eligible to work permanently in the United States.
Familiarity with incident response planning, DevSecOps principles, or promoting security awareness programs is a nice-to-have.

The position offers a competitive salary range of $175,000–$205,000 USD per year, based on experience.
There are meaningful equity opportunities available.
A comprehensive benefits package, including healthcare coverage, is provided.
The role supports a remote-first work environment across the United States.
Flexible work arrangements are available to support work-life balance.
The company promotes a supportive and inclusive culture focused on growth, collaboration, and continuous learning.

Apply now

Please let Jobgether know you found this job on RemoteYeah. This helps us get more companies to post jobs here for you.

Hiring company

Jobgether

About the job

Posted on

August 15, 2025

Job type

Full-time

Salary

$175,000—$205,000 / year

Location requirements

Job title

Other

Experience level

Lead

Degree requirement

Skills

Software as a Service Web security

Benefits

Job expired or something else is wrong with this job?

Report job