Security & Compliance Specialist

Our mission, Your Success:

We connect professionals with top U.S. start-ups, helping talented individuals build successful careers. Our goal is to create great career opportunities while attracting, retaining, and developing the best talent.

Our Client, Your Impact!

Our well-funded U.S. based client is a leading team of IT experts delivering flexible technology services to growing businesses. They bridge the gap between IT and people by providing tailored support based on each organization’s needs, while making employees lives easier through technology.

Key Responsibilities

• Lead end-to-end compliance engagements as the primary client advisor, driving readiness across SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS, HITRUST, and NIST CSF, including gap assessments, control validation, evidence collection, and remediation tracking.
• Own audit readiness and execution, including coordination with clients, auditors, and internal teams to ensure successful, low-friction audit cycles and certifications
• Assess, identify, and manage security and compliance risks across client environments, defining mitigation strategies and supporting remediation efforts across technical and business teams
• Translate complex compliance and regulatory requirements into clear, actionable remediation roadmaps, ensuring effective execution and alignment with audit timelines
• Drive ongoing compliance operations and governance across multiple client environments, including reporting cadences, compliance calendars, documentation, renewals, and third-party assessments

Technical Familiarity

Candidates should have exposure to modern security and IT environments, including:

• Cloud platforms: AWS, Azure, or GCP (basic understanding of IAM, logging, or network security)
• GRC tools: Drata, Vanta, Delve, or similar compliance platforms
• Identity tools: Okta, Azure AD, Google Workspace
• Security tools: CrowdStrike, SentinelOne, Huntress, or similar
• MDM tools: Jamf, Kandji, Mosyle
• Collaboration tools: Jira, Asana, Notion, Slack; plus basic understanding of VPNs, SSO, access controls, and SaaS security concepts

Requirements

• 5+ years of experience in IT security, compliance, audit support, systems administration, or related roles
• Strong understanding of SOC 2 and/or ISO 27001 frameworks, security principles, risk concepts, and control implementation
• Strong understanding of information security principles, control frameworks, and risk management methodologies
• Excellent communication skills, with the ability to effectively advise executives, auditors, and technical teams
• Strong project management and prioritization skills, with experience managing multiple client engagements simultaneously

We are looking for individuals who:

• Are available for full-time engagement
• Consider this role as their primary professional commitment (main role)

Other Details:

• Schedule: Monday to Friday
• 6:00 PM – 2:30 AM (Prishtina / Tirana / Skopje time)
• Occasional flexibility may be required to support global teams and project needs

Benefits:

• Private health insurance
• Top-tier office equipment
• Opportunity to work directly with fast-growing U.S. companies
• Collaborative and supportive international environment
• Exposure to modern SaaS infrastructure and enterprise-level projects

If you don’t meet every requirement but feel you could be a strong fit for the role, we encourage you to apply.