Offer summary

Qualifications:

3–5+ years of experience in a security or compliance role, preferably in SaaS or cloud-native environments., Strong understanding of SOC 2, ISO 27001, and/or NIST frameworks., Hands-on experience with SIEM platforms and log monitoring tools., Excellent communication and documentation skills..

Key responsabilities:

Support internal security and compliance initiatives, including SOC 2 and risk assessments.

Track performance and progress across internal and external security audits.

Manage security training compliance and assist with implementation of security controls.

Collaborate cross-functionally to identify flaws in security systems and recommend improvements.

Job description

The Role:

We’re looking for a Security Contractor to support key initiatives across our security, compliance, and IT operations programs. You’ll work closely with our Security & IT team to help mature our security posture, improve internal controls, assist in audit readiness, and drive execution on critical projects. This is a hands-on role ideal for someone who thrives in a fast-paced, dynamic SaaS environment.

Responsibilities:

Support internal security and compliance initiatives, including SOC 2, risk assessments, and vendor reviews.
Track performance and progress across internal and external security audits, including managing scope, timelines, involved departments, and audit outcomes.
Manage security training compliance, including developing training modules, monitoring completion rates, and following up on outstanding assignments.
Assist with implementation and documentation of security controls, policies, and processes.
Assist with SIEM configuration, log collection, alert tuning, and monitoring workflows.
Conduct security reviews on new vendors, tools, and integrations.
Coordinate and support vulnerability scanning, penetration testing, and remediation tracking.
Collaborate on access reviews and user lifecycle automations.
Help operationalize and improve incident response, BCP/DR plans, and monitoring strategies.
Create and maintain clear SOPs and KBAs for repeatable security and IT workflows.
Collaborate cross-functionally with departments to identify flaws in security systems and recommend improvements to strengthen the company’s overall security posture.

Requirements:

3–5+ years of experience in a security or compliance role (preferably in SaaS or cloud-native environments).
Google Admin Experience
Strong understanding of SOC 2, ISO 27001, and/or NIST frameworks.
Experience with access management, vulnerability management, vendor risk assessments, and security policies.
Hands-on experience with SIEM platforms and log monitoring tools.
Ability to work independently and deliver results with minimal supervision.
Excellent communication and documentation skills.

Great to Have:

Experience with scripting or automation
Familiarity with AI governance or SaaS security tools.
Familiarity with tools such as JumpCloud, Google Workspace, BetterCloud, Knowbe4 and similar Platforms.

Required profile