Cybersecurity Compliance Manager

About Workstreet

At Workstreet, we are on an exciting journey to help businesses scale securely by building and implementing cutting-edge security and compliance programs. We’re a fast-growing startup specializing in compliance frameworks like SOC 2, ISO 27001, GDPR, and more. Our goal is to empower companies to meet regulatory standards while enhancing their cybersecurity posture from day one!

Workstreet is seeking an experienced Compliance and Security extraordinaire who will be responsible for managing compliance programs and ensuring adherence to frameworks like SOC 2, ISO 27001, HIPAA, and others for our clients. The ideal candidate will have a proven track record in policy writing, implementing SOC 2 Type 1 and Type 2, and hands-on experience with technical controls in various cloud platforms such as AWS, GCP, and Azure.

Key Responsibilities:

• Develop, write, and maintain policies and procedures to ensure compliance with SOC 2, ISO 27001, and other relevant standards.
• Manage and execute SOC 2 Type 1 and Type 2 implementation projects. Implement and oversee technical controls in cloud environments, including AWS, GCP, and Azure.
• Direct daily operations of a small team, driving success through effective leadership.
• Conduct regular security audits and risk assessments to identify vulnerabilities and ensure continuous improvement of security posture.
• Coordinate with different teams to ensure compliance and security best practices are integrated into their workflows.
• Stay updated on new regulatory requirements and industry best practices.
• Work within and feel comfortable operating compliance platforms like Drata, Vanta, and SecureFrame.

Qualifications:

• Bachelor’s degree in Information Technology, Cybersecurity, or a related field.
• 3+ years managing a small team.
• Proven experience in managing compliance programs and familiarity with SOC 2 and ISO 27001 frameworks.
• Strong knowledge and experience in implementing technical controls in cloud platforms like AWS, GCP, and Azure.
• Excellent communication and writing skills in English.
• Ability to work independently with a strong sense of initiative.

• Must be amenable to work US Eastern Time zone hours.

Preferred Skills:

• Relevant certifications (e.g., CISA, CISSP, CISM).
• Experience in conducting security training and awareness programs.
• Familiarity with other compliance frameworks and regulations (e.g., GDPR, HIPAA).

What We Offer:

• Competitive pay
• Work from anywhere in the world
• Ability to grow from this role into a vCISO role
• Ability to work with amazing companies and clients

Workstreet Celebrates Diversity!

As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.