Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Hospitable.com

Senior Compliance Officer – US EST/EMEA

Hospitable.com

Senior Compliance Officer managing compliance programs for SaaS company. Responsible for SOC 2 and PCI DSS compliance, collaborating with cross-functional teams.

Posted 4/28/2026full-timeRemote • Oregon • 🇺🇸 United StatesSenior💰 $136,492 - $170,430 per yearWebsite

Tech Stack

Tools & technologies
Kubernetes

About the role

Key responsibilities & impact
  • Own and operate our SOC 2 Type II compliance program end-to-end - managing the annual audit cycle, maintaining controls in Vanta, coordinating evidence gathering across teams, and remediating gaps before they become findings.
  • Design and lead the rollout of PCI DSS Service Provider Level 1 compliance, working with a QSA and internal engineering teams to scope the assessment, implement required controls, and prepare for audit.
  • Build out our GDPR compliance posture - formalising data processing records, ensuring DSAR processes are robust, and working across departments to close gaps in our data protection practices.
  • Manage our GRC tooling (Vanta) day-to-day - configuring tests, maintaining integrations, triaging failing checks, and keeping evidence fresh and audit-ready.
  • Respond to customer and partner security questionnaires, due diligence requests, and trust-related inquiries. You'll be the face of Hospitable's security posture externally.
  • Work with Sam whose favourite fruit is Mango.
  • Partner with engineering and infrastructure to translate compliance requirements into actionable technical work - writing clear tickets, not vague mandates.
  • Identify where compliance automation can reduce manual effort and implement it. We're a tech company; we should act like one when it comes to compliance too.
  • Evaluate and recommend additional frameworks or certifications that strengthen our market position as we scale.

Requirements

What you’ll need
  • Significant hands-on experience running compliance programs in a SaaS or technology company - you've been through multiple audit cycles and know what great looks like.
  • Deep working knowledge of SOC 2 and PCI DSS frameworks. You understand controls at a practical level, not just a theoretical one.
  • Experience with GRC platforms, ideally Vanta. You should be comfortable configuring tests, managing integrations, and using the platform as a source of truth rather than a reporting afterthought.
  • Familiarity with GDPR and data protection requirements. Formal DPO experience is a plus but not required.
  • The ability to work cross-functionally with engineering teams - you can read an architecture diagram, understand what a Kubernetes cluster is, and translate compliance requirements into language engineers actually want to act on.
  • Avid user of AI to improve and automate your workflows, knowing when to reach for it and when to step in - we don't want to be the next Delve-like.
  • Strong written communication. We're remote-first and async-heavy. Most of your influence will come through clear documentation, well-written tickets, and persuasive Slack messages rather than meetings.
  • Self-motivated and able to operate with high autonomy. You won't have a compliance team around you (yet). You need to be comfortable owning the function solo and knowing when to pull others in.
  • Experience working with external auditors and QSAs. You know how to prepare for and manage an audit without it becoming a fire drill.
  • Everything else is a lovely bonus that we're excited to hear about!

Benefits

Comp & perks
  • A supportive, radically transparent, and caring team environment, where you are trusted, not managed—and a culture that is focused on results and output.
  • The total budget for this role is within $148,000 - $184,800.00 depending on the cost of living in your location. We can hire talent internationally as contractors—or employees if you are based in the United States, the European Union, or Australia, taking into account payroll taxes to determine your gross compensation. This means that for US employees, the gross salary could be anywhere between $136,492.34 to $170,430.97.
  • We also offer options into the company equity through (RSU's) with a current grant value of up to $50,400.00 to share in the long-term upside value of the company.
  • For US employees: healthcare (including EPO, PPO and HSA), 401(k).
  • 35 days off per year, encouraged (including self-serve public holidays) and parental leave.
  • Complimentary mental health and emotional support with therapists on call through Slack by Spill.
  • Earn virtual coins through our peer recognition platform and redeem them through gift cards, donations, or monetary rewards.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
SOC 2PCI DSSGDPRcompliance automationGRC platformsaudit managementdata protectiontechnical writingKubernetesAI workflows
Soft Skills
strong written communicationself-motivatedcross-functional collaborationautonomyinfluence through documentationpersuasive communicationproblem-solvingattention to detailadaptabilityinitiative