Listing Description

As a Security Compliance Engineer at Jasper, you’ll report to the Director of Information Security. You will help build a world class security program, both through creating and enabling appropriate policies and through collaboration with business partners to define and ensure compliance to control language. As a subject matter expert you will have a strong partnership with business partners to ensure a secure environment now and into the future.  

At Jasper, we are committed to celebrating and supporting our differences. We believe that diversity is essential to innovation and makes us better able to serve our customers. We’re also passionate about supporting new employees and growing a culture of collaboration. We hire smart, curious people of all levels and backgrounds who are excited to learn and develop their skills. If you’re interested in working for Jasper but your past experience doesn’t perfectly align with the job description, we encourage you to apply anyways.

This role is open to candidates located in the US and can be remote based.

What you will do at Jasper

• Lead compliance efforts by making decisions on how to implement relevant standards such as SOC2, GDPR, CCPA, ISO 27001, etc.


• Work with business partners to determine timelines and implementation priorities.


• Take the lead in defining control language. 


• Coordinate company efforts to adhere to standards.


• Manage security information gathers (SIG) requests by ensuring accurate and timely vendor and data partner responses.  


• Evaluate vendor/partner compliance is in line with best practices and following internal requirements.  


• Manage compliance monitoring including inventory, vulnerability management, security training, and continuous monitoring and reporting and other recurring compliance activities.


• Assist and support security policy and procedure maintenance and documentation improvements.


• Assist in the incident response process and ensure incidents are documented.


• Support sales and partner relationships to ensure customers are confident in Jasper security practices.


• Provide additional support for internal Security and Operations projects and activities as required.

What you will bring to Jasper

• 5+ years experience in security compliance, auditing, or similar experience with a demonstrated expertise in security principles.


• Experience with compliance standards such as SOC2, ISO 27001, GDPR, etc.


• Experience performing audits and gap analysis against compliance standards.


• Excellent interpersonal skills, and the ability to work effectively with team members to find solutions to complex problems.  

The Engineering values that guide us:

• Engineering without ego - We own our work, but within the framework of the team. We see features through to the end while respecting our team members' ideas


• Strong opinions, loosely held  - We fight for our ideas, but are open to hearing others' suggestions


• Ship fast, sustainably, and simply  - We move quickly without over-complicating but with a minimum of debt


• Scale each other - We support and teach each other every day in order to be the strongest team possible