Source Job

• Collaborate with cross-functional teams to maintain and improve the company's comprehensive compliance program.
• Manage the end-to-end audit process for SOC 2 compliance, ensuring timely and accurate completion.
• Oversee the Information Security Risk Management Program, documenting identified risks, coordinating mitigation efforts.

airSlate is a global SaaS technology company that develops no-code workflow automation, electronic signature, and document management solutions. They have teammates in more than 20 countries across three continents and main hubs in the United States, Poland, Romania, Ukraine and Philippines.

• Lead IT compliance initiatives ensuring adherence to regulations and standards.
• Manage validation of cloud-based applications, including risk assessments and testing.
• Develop and maintain key compliance documents such as validation protocols.

Jobgether is a company that that uses an AI-powered matching process to ensure applications are reviewed objectively and fairly. They identify the top-fitting candidates and share this shortlist directly with the hiring company.

• Own end-to-end IT operations, increasing speed and consistency.
• Partner with People Ops and Engineering to ensure seamless employee lifecycle support.
• Partner closely with Security and Engineering to ensure IT processes support SOC 2 / ISO / future compliance needs.

Hightouch is the modern AI platform for marketing and growth teams. Our AI agents reimagine marketing workflows. The company partners with industry leaders like Domino’s, Chime, Spotify, Ramp, Whoop, Grammarly, and over 1000 others.

• Provide guidance to teams on the application of compliance requirements.
• Maintain subject matter expertise on U.S. federal and state consumer protection and privacy laws and regulations.
• Conduct and document assessments of compliance and privacy risks and controls for targeted processes, products and regulatory changes.

Experian is a global data and technology company, powering opportunities for people and businesses around the world. As a FTSE 100 Index company listed on the London Stock Exchange (EXPN), they have a team of 22,500 people across 32 countries.

• Oversee and manage all aspects of regulatory compliance within our organization.
• Develop and implement compliance policies and procedures, conduct audits and assessments, provide guidance to employees, and serve as a liaison with regulatory agencies.
• Ensure that our company operates in accordance with all relevant laws, regulations, and industry standards.

Truelogic is a leading provider of nearshore staff augmentation services headquartered in New York. Their team of 600+ highly skilled tech professionals, based in Latin America, drives digital disruption by partnering with U.S. companies on their most impactful projects.

Lead and support customer security audits and respond to security questionnaires. Prepare, coordinate, and manage ISO 27001 audits. Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory requirements.

OneStudyTeam specializes in speeding up clinical trials and increasing the chance of new therapies being approved with the ultimate goal of improving patient outcomes.

• Acting as the primary subject matter expert for all security and compliance inquiries.
• Taking end-to-end ownership of certification lifecycles, such as ISO 27001 and Cyber Essentials.
• Working closely with the GRC team to improve existing programs.

Sword Health is shifting healthcare from human-first to AI-first through its AI Care platform, making world-class healthcare available anytime, anywhere. They have over 1,000 enterprise clients and are backed by 42 clinical studies and over 44 patents.

• Assist in the development, implementation, and maintenance of compliance programs.
• Support HIPAA and patient privacy initiatives, including risk assessments.
• Partner cross-functionally to evaluate compliance and privacy impacts of new initiatives.

Wisp puts healthcare back in patients’ hands by connecting patients with hassle-free sexual + reproductive care online, with discreet and convenient treatment that saves them time, money, and stress. They are a growing, fully-remote team in the United States.

As a Compliance and Risk Specialist, you will support the Compliance and Risk team by leading compliance initiatives. You will conduct risk assessments and remediation activities. You will contribute to the development of security strategies for systems deployed globally.

Canadian Bank Note Company (CBN) is a trusted leader in secure technology solutions for governments and businesses worldwide.

Document and communicate audit findings to management and recommend corrective actions to improve compliance. Provide staff education on privacy standards, compliance policies, and regulatory requirements. Review, investigate, and respond to facility inspections and/or deficiencies issued by regulatory agencies.

SimonMed Imaging is the fastest growing outpatient radiology practice in the Nation and is committed to excellence and improving patient care.

• Interpret, operationalize, and maintain technical compliance requirements across all RSI jurisdictions.
• Manage the training and development of Technical Compliance Analysts and Technical Compliance Coordinators.
• Support all internal departmental needs for technical compliance guidance on issues, new features, changes, etc.

Rush Street Interactive is a market leader in online casino and sports betting. They are building bridges between online, social and land-based gaming businesses to create amazing, integrated experiences.

• Own compliance program development and implementation, ensuring the organization meets legal requirements.
• Act as the AML Compliance Officer (AMLCO) for the EU entity and remain compliant with AML/CTF requirements.
• Conduct regular reviews of internal compliance policies and procedures, updating them as necessary.

Deel is the all-in-one payroll and HR platform for global teams, built for today’s world with HRIS, payroll, compliance, benefits, and AI-powered tools. As the fastest-growing SaaS company, Deel has a team of 7,000 spanning 100+ countries with a connected and dynamic culture.

• Use security and compliance tools (GRC tools) to help the company stay audit-ready
• Manage IT assets and access permissions for team members and internal systems
• Support daily security operations related to ISO 27001 / SOC 2

Hopae is building the world’s most trusted digital identity platform — private, secure, and built for real life. Backed by top global investors, Hopae operates across Seoul, Paris, and San Francisco, bringing together exceptional talent from over 10 nationalities.

• Creating various legal and other documents through copy typing, transcription, scanning or other methods.
• Proofreading and checking documents for appropriate formatting, spelling, grammar, and sense/clarity.
• Responding promptly to requests, meeting deadlines, and working cooperatively with other departments and individuals within the Firm.

McCarthy Tétrault is a Canadian law firm that offers a full suite of legal and business solutions to clients in Canada and around the world. They embrace inclusion and provide the tools and opportunities to help their people develop to their full potential and have earned the distinction of one of Canada’s Best Diversity Employers for the thirteenth consecutive year in 2025.

• Drive the implementation of technical controls and evidence gathering in collaboration with engineering for compliance standards.
• Manage the daily operational reality of audits, customer questionnaires, and internal IT/Security support requests.
• Rapidly prototype and ship internal tools, custom Vanta integrations, and scripts using AI-assisted development to close automation gaps.

Sayari is a risk intelligence provider equipping public and private sectors with visibility into complex commercial relationships. They deliver corporate and trade data from over 250 jurisdictions and are headquartered in Washington, D.C. They were also featured as one of Inc.’s “Best Workplaces” for 2025.

• Build and mature core elements of Rula’s enterprise Compliance Program.
• Ensure adherence to federal and state healthcare regulatory requirements across Rula’s clinical operations.
• Lead compliance risk assessments and internal controls; oversee investigations and corrective action processes.

Rula is dedicated to treating the whole person and aims to create a world where mental health is no longer stigmatized. Rula is a remote-first company that is passionate about making a positive impact on the lives of those struggling with mental health issues.

• Perform ITGC and application control testing across SOC 2, SOC 1, and HIPAA engagements.
• Communicate with clients to request evidence, conduct walkthroughs, and clarify audit questions.
• Document findings and support the preparation of client deliverables.

Insight Assurance is a security and compliance firm trusted by over 1,200 organizations for their SOC 2, PCI DSS, ISO 27001, and HIPAA audit needs.

• Collaborate with business leadership, Legal, Procurement, and Cyber to review terms and conditions.
• Track status of risk remediations in the risk register with business stakeholders.
• Contribute to overall program enhancements and drive automation with various IT and Cybersecurity stakeholders.

NBCUniversal is a leading media and entertainment company that creates world-class content across film, television, and streaming. They own and operate entertainment and news brands, with a focus on improving communities, championing an inclusive culture, and attracting a talented workforce.

Provide guidance to ensure project compliance to the United States Government Baseline (USGCB) for IT Security. Provide technical expertise of computer security laws, mandates, standards and policies in accordance with the Federal Information Security Management Act (FISMA). Represent the project in internal and external meetings, working groups, and integrated project teams to provide IT security compliance requirements.

DecisionPoint Corporation is seeking an Information Security Analyst to join our team!

Lead day-to-day activities for SOC 2 and other IT compliance engagements. Guide staff, engage with clients, and play a key role in the delivery of high-quality audits and readiness assessments. Identify control gaps and provide recommendations for remediation.

Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance.