Description
Document Crunch is seeking a Compliance Manager to join our amazing, tight-knit team. In this role, you will take ownership of our SOC 2 Type II compliance regime and possibly support expansions into other frameworks, such as ISO 27001 and GDPR, as we grow. This role will involve working closely with multiple departments to implement compliance strategies, responding to security questionnaires from clients and prospects, and managing compliance initiatives that align with company growth.
Who is Document Crunch?
We are a cutting-edge company building innovative AI tools that simplify construction contracts by quickly identifying critical risk provisions and provides teams with guidance to make great decisions throughout the entire project lifecycle. Our tools enable construction teams to get subject matter expertise- usually only gained through outside consulting – for a fraction of the cost. We empower the entire industry by identifying WHAT critical issues exist in contracts and documents, and WHY those critical issues matter, so the teams can make better business decisions without traditional overhead.
We know that in order to achieve great things, you need a great team. We are a values-driven company and every single one of our “CRUNCHERS” go above and beyond to help our customers achieve success. A must for this position (and everyone on our team) is to stay true to our core values. We Are Warmhearted Our success is powered entirely by our people who are real and approachable. We foster an environment that is warm, fun and welcoming for everyone. We Are Inspired We care deeply about our mission and are inspired by our potential. If it was easy, everybody would do it, but we are striving for greatness. We take pride in being owners in this journey. We Are Growth-Minded Life is short and we want to make our time count. We invest in growth—personally and professionally. We never stop chasing our why.
Requirements
Key Responsibilities
- SOC 2 Compliance Management: Oversee and maintain SOC 2 Type II compliance, ensuring ongoing adherence and readiness for audits.
- Security Questionnaires: Serve as the primary point of contact for completing security questionnaires from customers and prospects, ensuring accuracy and alignment with our security standards.
- Cross-Department Collaboration: Work closely with HR, Development, Cloud Operations, and Sales to address compliance requirements across the organization and support initiatives that align with our business goals.
- GRC Tool Management: Utilize Vanta or a similar GRC tool to manage compliance processes, audits, and documentation, optimizing compliance workflows.
- Training and Awareness: Assist in selecting appropriate security training programs and ensure delivery of compliance and security training across the organization.
- Team Development Potential: As the company scales, this role may grow to include supervisory responsibilities, potentially overseeing at least one direct report who supports various compliance functions.
Skills and Qualifications
- Experience: Proven experience in managing compliance regimes, specifically SOC 2 Type II, with additional experience in GDPR and/or ISO 27001 preferred.
- Skills and Tools: Experience with Vanta or similar GRC tools; strong understanding of compliance management, audit preparation, and security standards.
- Interpersonal Skills: Strong communication skills, with the ability to work collaboratively across departments and interact with clients in completing security questionnaires and speaking to security and compliance matters.
- Growth Mindset: Willingness to adapt in a dynamic, scaling environment and take on additional compliance responsibilities as the company grows.
Preferred Qualifications:
- CISM or similar certifications are preferred but not required.
- Bachelor's degree or higher in a relevant field
Benefits
- Competitive salary and benefits package.
- Close to the ground floor of an incredibly high-growth business
- Substantial internal growth opportunities and emphasis on personal & professional development
- Generous paid time off policy
- World class medical, dental, and vision benefits
- Participation in the employee stock option program
- Open-minded and collaborative work environment with a focus on results
We value diversity, equity, and inclusion in everything we do. It is our policy to provide equal opportunity to all people without regard to race, color, religion, national origin, marital status, veteran status, age, disability, pregnancy, sex, sexual orientation, gender identity or any other legally protected category.