Security Compliance Manager - Remote

Overview

SonderMind is seeking a Security Compliance Manager who will operate as the project manager for our security and compliance program, ensuring continuous compliance with relevant frameworks.

In Short

• Drive policy creation and ensure compliance with ISO 27001.
• Coordinate cross-functional ownership and RACI alignment.
• Lead annual ISO 27001 audits end-to-end.
• Execute periodic controls and automate evidence capture.
• Conduct security risk assessments for products and vendors.
• Develop and deliver security and privacy training.
• Track and report control ownership status.
• Maintain audit work-papers and centralized evidence repository.
• Promote a culture of accountability through regular communications.
• Shape processes and drive a measurable security culture.

Requirements

• 5+ years in information-security compliance, ideally in SaaS.
• Demonstrated ownership of a SOC 2 Type 2 audit cycle.
• Strong project-management skills.
• Working knowledge of control frameworks (SOC 2, ISO 27001).
• Familiarity with security tooling (e.g., Vanta, Jira).
• Excellent communication skills for technical and non-technical audiences.

Benefits

• Flexible hybrid work environment.
• Generous PTO policy with a minimum of three weeks off per year.
• Free therapy coverage benefits.
• Competitive Medical, Dental, and Vision coverage.
• Employer-paid disability and life insurance.
• Eight weeks of paid Parental Leave.
• 401K retirement plan with 100% matching.
• Annual company gathering in Denver.
• Fourteen company holidays.
• Additional benefits including supplemental life insurance and pet insurance.