Jobright.ai
Join to apply for the
Security Compliance Manager (Remote)
role at
Jobright.ai 1 day ago Be among the first 25 applicants Join to apply for the
Security Compliance Manager (Remote)
role at
Jobright.ai Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: SonderMind is dedicated to providing personalized mental health care and is seeking a Security Compliance Manager to lead their security and compliance program. This role involves driving policy creation, ensuring compliance with ISO 27001, and managing audits while promoting a culture of accountability within the organization. Responsibilities: • Draft, publish, and maintain information-security and privacy policies, standards, and procedures. • Establish a living compliance calendar covering control tests, access reviews, vendor assessments, and policy refresh cycles. • Facilitate working sessions so Engineering, IT, PeopleOps, and Legal understand their accountability for controls such as vulnerability management, change management, and incident response, etc... • Track and report control ownership status; escalate gaps or overdue actions. • Lead annual ISO 27001 audits end-to-end: scoping, readiness assessments, evidence collection, auditor coordination, and remediation follow-up. • Maintain audit work-papers and a centralized evidence repository • Execute and document periodic controls: quarterly user access reviews, privileged-access attestations, vendor risk assessments, business continuity tests, and vulnerability-remediation SLAs. • Automate evidence capture wherever feasible through tooling integrations (e.g., Vanta, Jira, Slack). • Conduct security risk assessments for new products and vendors; track mitigation plans to closure. • Update policies and training content in response to regulatory and industry changes. • Generate KPIs and board-level metrics on compliance health, audit findings, and risk trends. • Develop and deliver role-based security and privacy training; ensure coverage and completion tracking. • Promote a culture of accountability through regular communications, lunch-and-learns, and compliance office hours. Qualifications: Required: • 5+ years in information-security compliance, ideally within a SaaS environment. • Demonstrated ownership of at least one full SOC 2 Type 2 audit cycle. • Strong project-management skills: ability to run parallel work-streams, influence without authority, and meet tight deadlines. • Working knowledge of common control frameworks (SOC 2, ISO 27001, NIST CSF, etc..) • Familiarity with security tooling for evidence collection (e.g., Vanta) and ticketing systems (Jira). • Excellent written and verbal communication; adept at translating control requirements for technical and non-technical audiences. Preferred: • Experience building RACI matrices and running cross-functional governance forums. • Background in vulnerability management processes or secure SDLC. Company: SonderMind is a mental healthcare provider that offers treatment for mental health through therapy and psychiatry. Founded in 2014, headquartered in Denver, Colorado, USA, team size 51-200 employees, currently Growth Stage. SonderMind has a track record of offering H1B sponsorships. Seniority level
Seniority levelMid-Senior level Employment type
Employment typeFull-time Job function
IndustriesSoftware Development Referrals increase your chances of interviewing at Jobright.ai by 2x Inferred from the description for this job Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for “Security Compliance Manager” roles.Senior Security Compliance Manager (Remote) Denver, CO $180,000.00-$200,000.00 2 months ago Software Engineer II, Backend (Consumer Authentication)Software Engineer II, Backend (Consumer Authentication) We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Are you the right applicant for this opportunity Find out by reading through the role overview below. #J-18808-Ljbffr Remote working/work at home options are available for this role.
Security Compliance Manager (Remote)
role at
Jobright.ai 1 day ago Be among the first 25 applicants Join to apply for the
Security Compliance Manager (Remote)
role at
Jobright.ai Jobright is an AI-powered career platform that helps job seekers discover the top opportunities in the US. We are NOT a staffing agency. Jobright does not hire directly for these positions. We connect you with verified openings from employers you can trust. Job Summary: SonderMind is dedicated to providing personalized mental health care and is seeking a Security Compliance Manager to lead their security and compliance program. This role involves driving policy creation, ensuring compliance with ISO 27001, and managing audits while promoting a culture of accountability within the organization. Responsibilities: • Draft, publish, and maintain information-security and privacy policies, standards, and procedures. • Establish a living compliance calendar covering control tests, access reviews, vendor assessments, and policy refresh cycles. • Facilitate working sessions so Engineering, IT, PeopleOps, and Legal understand their accountability for controls such as vulnerability management, change management, and incident response, etc... • Track and report control ownership status; escalate gaps or overdue actions. • Lead annual ISO 27001 audits end-to-end: scoping, readiness assessments, evidence collection, auditor coordination, and remediation follow-up. • Maintain audit work-papers and a centralized evidence repository • Execute and document periodic controls: quarterly user access reviews, privileged-access attestations, vendor risk assessments, business continuity tests, and vulnerability-remediation SLAs. • Automate evidence capture wherever feasible through tooling integrations (e.g., Vanta, Jira, Slack). • Conduct security risk assessments for new products and vendors; track mitigation plans to closure. • Update policies and training content in response to regulatory and industry changes. • Generate KPIs and board-level metrics on compliance health, audit findings, and risk trends. • Develop and deliver role-based security and privacy training; ensure coverage and completion tracking. • Promote a culture of accountability through regular communications, lunch-and-learns, and compliance office hours. Qualifications: Required: • 5+ years in information-security compliance, ideally within a SaaS environment. • Demonstrated ownership of at least one full SOC 2 Type 2 audit cycle. • Strong project-management skills: ability to run parallel work-streams, influence without authority, and meet tight deadlines. • Working knowledge of common control frameworks (SOC 2, ISO 27001, NIST CSF, etc..) • Familiarity with security tooling for evidence collection (e.g., Vanta) and ticketing systems (Jira). • Excellent written and verbal communication; adept at translating control requirements for technical and non-technical audiences. Preferred: • Experience building RACI matrices and running cross-functional governance forums. • Background in vulnerability management processes or secure SDLC. Company: SonderMind is a mental healthcare provider that offers treatment for mental health through therapy and psychiatry. Founded in 2014, headquartered in Denver, Colorado, USA, team size 51-200 employees, currently Growth Stage. SonderMind has a track record of offering H1B sponsorships. Seniority level
Seniority levelMid-Senior level Employment type
Employment typeFull-time Job function
IndustriesSoftware Development Referrals increase your chances of interviewing at Jobright.ai by 2x Inferred from the description for this job Medical insurance Vision insurance 401(k) Get notified when a new job is posted. Sign in to set job alerts for “Security Compliance Manager” roles.Senior Security Compliance Manager (Remote) Denver, CO $180,000.00-$200,000.00 2 months ago Software Engineer II, Backend (Consumer Authentication)Software Engineer II, Backend (Consumer Authentication) We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
Are you the right applicant for this opportunity Find out by reading through the role overview below. #J-18808-Ljbffr Remote working/work at home options are available for this role.