Security and Compliance Manager

Job Summary

A company is looking for a Security and Compliance Manager to oversee its security function and ensure compliance with relevant regulations.

Key Responsibilities

• Codify and execute the security roadmap, focusing on hardening critical systems and ensuring compliance with applicable laws
• Lead SOC 2 Type II certification efforts and manage external auditor relationships
• Own all required licenses and registrations across US jurisdictions, ensuring content accuracy and compliance documentation

Required Qualifications

• 7+ years of experience in information security, security engineering, GRC, or a related field, with at least 4 years in a fintech or financial services environment
• Hands-on experience hardening production systems at a growth-stage company
• Deep knowledge of SOC 2 and PCI DSS, plus experience with at least one additional security framework
• Experience leading external security audits end-to-end, including evidence collection and remediation tracking
• Hands-on experience with GRC/compliance platforms like Vanta, Drata, or Secureframe