Security and Compliance Associate

Location

Canada

Posted

1 day ago

Salary

0

Seniority

Mid Level

No structured requirement data.

Job Description

Security and Compliance Associate

Habitat Learn Inc

Role Description This is a newly created role at Habitat Learn for someone early in their career who is eager to take ownership, learn quickly, and grow within a fast-moving EdTech company. As our first dedicated Security & Compliance Associate, you will support and help strengthen our security and compliance program across multiple frameworks, including SOC 2, ISO 27001, HIPAA, HECVAT, and Texas RAMP. You will not be working alone. We are currently engaged with the Humber Polytechnic Digital Tech Hub for a cybersecurity assessment, followed by ongoing advisory support. This provides a structured foundation, external expertise, and a clear remediation roadmap. Your role will be to help operationalize and execute this roadmap internally. You will work closely with the VP of Engineering and engineering leadership to ensure security and compliance requirements are embedded into day-to-day product and infrastructure operations. What You’ll Do - Compliance & Documentation - Support ongoing compliance activities across SOC 2, ISO 27001, HIPAA, HECVAT, and TX-RAMP - Collect, organize, and maintain audit evidence and security documentation - Help draft and maintain security policies, procedures, and internal standards - Complete security questionnaires and HECVAT submissions for institutional procurement - Maintain a compliance tracker and support audit readiness activities - Cybersecurity Assessment Follow-Through - Review findings from the Humber Digital Tech Hub cybersecurity assessment - Track remediation tasks and help coordinate follow-up with engineering and leadership - Support updates to the risk register and documentation of control gaps and resolutions - Act as an internal coordinator for progress tracking and reporting - Security Operations Support - Support user access controls, provisioning, and offboarding processes - Assist with vendor security reviews and BAA tracking - Help coordinate internal security awareness and training activities - Support Apple device management processes (MDM, Apple Business Manager) - Stakeholder Support - Support responses to customer security reviews and procurement due diligence requests - Assist in preparing compliance and security status updates for leadership - Stay informed on relevant privacy and data protection regulations (FERPA, PIPEDA, etc.) Qualifications - Recent graduate (within 1–2 years) of a diploma or degree in Cybersecurity, Protection & Security Investigation, IT Security, Network Security, or a related field - Ontario institutions such as Humber Polytechnic, Seneca Polytechnic, George Brown College, or equivalent programs are strongly welcomed - Coursework in cybersecurity frameworks, risk management, or privacy law is an asset Requirements - Strong attention to detail and highly organized approach to documentation - Clear written communication skills (policy writing and institutional responses are key parts of the role) - Comfortable working independently in a fast-paced, evolving environment - Curious about security and privacy, with an interest in understanding underlying systems (not just processes) - Ability to manage multiple priorities and stay structured in a startup setting Nice to Have - Exposure to frameworks such as SOC 2, ISO 27001, NIST, HIPAA, or similar - Familiarity with Apple device management or enterprise IT environments - Entry-level certifications (e.g., CompTIA Security+, ISC2 CC) - Experience with tools such as Vanta, Drata, Notion, or Jira - Prior co-op, internship, or volunteer experience in IT, security, or compliance Benefits - A meaningful first role with real ownership (not an internship-style support role) - Direct mentorship from the VP of Engineering and exposure to company leadership - Structured guidance through the Humber Digital Tech Hub cybersecurity assessment - Hands-on experience across multiple enterprise compliance frameworks - Exposure to real institutional procurement and security processes - A mission-driven product supporting accessibility in education - Remote Employment - Health Benefits

Related Categories

Related Job Pages

More Compliance Jobs

Calendly logo

Senior Compliance and Risk Analyst

Calendly

The scheduling automation platform for eliminating the back-and-forth emails to find the perfect time — and so much more

Compliance1 day ago
Full TimeRemoteTeam 501-1,000Since 2013H1B No Sponsor

• Own and manage the organization's compliance program, including SOC 2 and ISO 27001 readiness, certification, and ongoing maintenance. • Develop and execute a compliance roadmap aligned with business objectives, regulatory requirements, and organizational risk appetite. • Lead internal and external audits by coordinating evidence collection, managing auditor relationships, and driving timely remediation of findings. • Monitor changes in regulatory and industry frameworks, assessing their impact on the organization's compliance program. • Own the enterprise risk management process, including risk identification, assessment, treatment planning, and ongoing monitoring. • Conduct periodic risk assessments and partner with stakeholders to identify control gaps and prioritize remediation activities. • Develop and present compliance metrics, risk dashboards, and executive reports for senior leadership. • Design, document, and improve internal controls aligned with SOC 2, ISO 27001, and other applicable frameworks. • Lead control testing, including evidence collection, effectiveness validation, remediation tracking, and continuous improvement. • Expand and mature the organization's common controls framework to support evolving compliance requirements. • Administer and optimize compliance automation platforms, improving workflow efficiency and reducing manual effort. • Perform User Access Reviews (UARs) and support continuous compliance monitoring through automation and reporting. • Partner with Engineering, Security, Product, Legal, HR, and Operations to integrate compliance into business processes and product development. • Develop training, playbooks, and self-service resources that empower teams to meet compliance requirements efficiently. • Manage multiple compliance initiatives simultaneously while ensuring projects remain on schedule and stakeholders stay informed.

United States
$198.2K - $233.2K / year
National Real Estate Management Group logo

Fractional Compliance Manager – Real Estate, Affordable Housing

National Real Estate Management Group

National Real Estate Management Group is the leading full-service real estate company helping investors invest!

Compliance1 day ago
Full TimeRemoteTeam 11-50H1B No Sponsor

• Lead and manage the organization's compliance program across multiple business functions. • Monitor federal, state, and local regulatory changes and implement necessary policy and procedural updates. • Ensure compliance with Fair Housing, affordable housing, privacy, AML/KYC, licensing, and other applicable regulations. • Oversee compliance for affordable housing programs including LIHTC, HUD, Section 8, HOME, and other federal, state, and local housing programs. • Conduct compliance audits, tenant file reviews, documentation reviews, and internal control assessments. • Prepare properties for agency inspections and coordinate responses to audit findings. • Develop and maintain compliance policies, procedures, internal controls, and record retention standards. • Design and deliver compliance training for corporate teams, property managers, and on-site staff. • Support acquisitions, financing, investor activities, and due diligence by reviewing documentation for regulatory compliance. • Prepare reports and compliance documentation for executive leadership, investors, government agencies, and external auditors. • Partner with Legal, Finance, Human Resources, Asset Management, Property Management, and Operations to promote a culture of compliance. • Serve as a trusted resource by providing guidance on compliance-related questions and helping resolve regulatory issues.

Michigan + 1 moreAll locations: Michigan | Washington
$75K - $100K / year
Alimentiv logo

Regulatory Affairs Specialist

Alimentiv

Learn about career opportunities, our culture, and our mission to improve human health.

Compliance1 day ago
Full TimeRemoteTeam 201-500Since 2020H1B No Sponsor

• Responsible for the day-to-day activities and delivery of Global Regulatory Affairs support services. • Role will include management of clinical trial applications to Competent Authorities, Ethics Committees and Regulatory Agencies. • Research, review and report on applicable global regulations and requirements. • Develop stakeholder tools and process/document regulatory risk assessments. • Provide support, expertise and represent the unit with other functional units, sponsors, researchers and/or regulatory authorities. • Ensure high quality, timely service delivery processes are maintained in accordance with corporate, industry and regulatory standards and guidelines. • May be required to coach peers and/or provide input for staff performance reviews.

Australia

VP, Benefits Compliance

NFP Corp

NFP is an inclusive Equal Employment Opportunity employer.

Compliance1 day ago

Role Description Under the general direction of the Deputy Chief Compliance Officer, the AVP or VP of Benefits Compliance, sometimes also referred to in the industry as “Benefits Compliance Counsel”, “ERISA Counsel”, “Employee Benefits Attorney”, or “Benefits Compliance Specialist”, will join a team of other compliance attorneys and specialists dedicated to providing exemplary benefits compliance services with a primary focus on developing and delivering high-quality compliance content, thought leadership, and technical guidance. This role is central to translating complex group employee health & welfare benefit regulations into clear, actionable insights for internal consultants and external clients. The VP will develop whitepapers, compliance bulletins, and educational materials, while also supporting client advisory work, internal training initiatives, and delivering client webinars. This individual will operate as both a subject matter expert and a strategic partner to the business, helping to shape the firm’s compliance narrative and market-facing expertise. Qualifications - Deep knowledge of ERISA, HIPAA, COBRA, ACA, MHPAEA, FMLA, CAA 2021, Transparency in Coverage rules, Section 125 plans, tax-advantaged arrangements (e.g., FSAs, HRAs, and HSAs), state PFML laws, and state employee health and welfare benefit laws. - Exceptional writing and editing skills, with the ability to produce clear, concise, and engaging compliance content for a non-legal audience. - Ability to synthesize complex legal concepts into practical business guidance. - Strong presentation skills, with experience leading webinars and educational sessions. - Proven ability to function as a thought leader and trusted advisor in a fast-paced, client-facing environment. - Strong research and analytical capabilities, with attention to detail and accuracy. - Ability to collaborate cross-functionally with consulting, sales, and leadership teams. - Highly organized with the ability to manage multiple competing priorities and deadlines. Requirements - Law degree preferred. - Prior experience with federal or state governmental regulatory body a plus. - CEBS designation (or equivalent industry experience) preferred. - Minimum 4 years of experience in employee benefits compliance. Benefits - Competitive salary. - PTO & paid holidays. - 401(k) with match. - Exclusive discount programs. - Health & wellness programs. - Performance-based incentives may be available.

United States
$120K - $173K / year