Part-Time Contract SOC 2 & Security Compliance Engineer (Remote)
Trunk ToolsSalary not specified
- Part Time
- Mid-level (3 to 4 years)
Not SpecifiedCompensation
Junior (1 to 2 years)Experience Level
Full TimeJob Type
UnknownVisa
Financial Services, Software & Technology, Health & BenefitsIndustries
Requirements
Candidates should possess 5-8 years of experience in security compliance, GRC, data privacy, or legal/compliance roles at a SaaS or fintech company. They should have hands-on experience with SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, and CCPA frameworks, and familiarity with tools like Vanta, Drata, OneTrust, or TrustArc. Strong written communication skills and attention to detail are also required.
Responsibilities
The Compliance Analyst will own and manage ongoing compliance efforts across SOC 2, ISO 27001, HIPAA, PCI DSS, GDPR, and CCPA, maintaining and updating security and privacy policies, documentation, and evidence to support audits and regulatory requirements. They will lead coordination and responses for third-party audits, risk assessments, and compliance reviews, partner with Legal and Product to assess regulatory impacts, and collaborate with Sales and Customer Success teams to respond to security RFPs and client assessments. Additionally, the role involves conducting vendor security and privacy assessments, educating internal stakeholders, and staying current on evolving security standards and privacy laws.
Skills
SOC 2
HIPAA
PCI DSS
GDPR
CCPA
Security frameworks
Privacy frameworks
Customer RFPs
Security questionnaires
Cross-functional collaboration
Forma
Flexible employee benefits management platform
About Forma
Forma provides a flexible benefits platform designed for HR teams and employers to enhance their employee benefits offerings, particularly in remote and hybrid work settings. The platform allows employers to tailor a variety of benefits to meet the specific needs of their employees, promoting higher utilization and satisfaction. Forma addresses common HR challenges, such as underutilization of benefits, by simplifying access and increasing awareness among employees. Additionally, the platform includes tools for monitoring compliance and risk, ensuring that companies adhere to relevant regulations. Unlike many competitors, Forma focuses on flexibility and accessibility, making it easier for organizations to create a healthier and more engaged workforce. The goal of Forma is to transform employee benefits management, providing a beneficial solution for both employers and employees.
Key Metrics
San Francisco, CaliforniaHeadquarters
2017Year Founded
$38.9MTotal Funding
SERIES_BCompany Stage
Consulting, Social Impact, EducationIndustries
201-500Employees