• Lead SOC 2 and ISO programs through the full audit lifecycle, scoping, evidence collection, control testing, auditor management, and remediation tracking. • Drive Fieldguide’s journey towards additional compliance frameworks and standards from gap assessment to audits. • Own the mapping of controls across overlapping frameworks. Maintain corporate policies, standards, and procedures. • Manage external relationships with auditors, assessors, consultants, and customers. Coordinate audit timelines, responses, and remediation plans. • Build integrations that continuously gather compliance evidence from AWS, GitHub, identity providers, and internal systems. Replace manual screenshots and spreadsheets with automated, auditable pipelines. • Design and implement continuous control monitoring: surface drift, alert on failures, and maintain dashboards for compliance program health and KPIs. • Own and operate the GRC platform. Configure control mappings, manage integrations, and ensure the platform accurately reflects our posture. • Integrate compliance checks into CI/CD pipelines, infrastructure-as-code reviews, and deployment processes. Make compliance a natural part of how engineers ship code. • Build and maintain self-serve tools that streamline customer security questionnaires, trust center content, and due diligence processes. • Partner with GTM teams to handle strategic customer security assessments. Help articulate Fieldguide’s compliance posture in sales processes. • Reduce time-to-response on security reviews through automation and scalable processes. • Evaluate and monitor third-party vendors for security and compliance risk. Build and maintain the vendor assessment program. • Create and deliver security awareness training. Draft security best practices and drive company-wide adoption.