Job Overview
Location
Remote - US
Job Type
Full-time
Category
Software Engineering
Date Posted
May 21, 2026
Full Job Description
đź“‹ Description
- • Implement and maintain US compliance program initiatives across government, healthcare, financial services, and enterprise SaaS customer requirements, ensuring adherence to frameworks such as TX-RAMP, GovRAMP, FedRAMP, HIPAA, and SOC 2.
- • Drive readiness, implementation, and ongoing maintenance for security and privacy compliance obligations by managing evidence collection, control monitoring, policy tracking, vendor documentation, and employee compliance tasks using platforms like Vanta.
- • Coordinate with external auditors, assessors, consultants, legal advisors, and certification bodies throughout all phases of audits, assessments, and certifications.
- • Lead government compliance initiatives including control mapping, gap assessments, documentation packages, system descriptions, policy updates, and responses to customer compliance requests.
- • Maintain and update compliance artifacts including policies, procedures, risk registers, control narratives, system inventories, access reviews, training records, and audit evidence.
- • Track changes in regulatory requirements, framework updates, and customer-specific obligations, and translate them into actionable internal control updates and workflow revisions.
- • Partner with Sales and Customer Success teams to respond to security questionnaires, public sector procurement requirements, and regulated customer due diligence requests.
- • Define and operationalize repeatable compliance workflows for intake, triage, ownership assignment, escalation, documentation, reporting, and remediation of control gaps.
- • Leverage AI tools, automation, and compliance platforms to reduce manual effort, improve evidence quality, and accelerate program execution across multiple compliance workstreams.
- • Collaborate with Engineering, Legal, and IT teams to understand system architectures, cloud environments, data flows, access controls, and security control implementations to ensure compliance alignment.
- • Communicate complex compliance requirements in plain English to technical, legal, business, and executive stakeholders with clarity and precision.
- • Maintain high organization and discipline while managing multiple concurrent compliance deadlines, audits, and stakeholder dependencies in a fast-paced, ambiguous environment.
- • Prioritize high-impact compliance risks over low-impact administrative tasks, demonstrating pragmatism and urgency in decision-making and execution.
- • Ensure all compliance activities meet audit-quality standards and are ready for both internal review and external assessment at any time.
- • Support additional compliance-related projects and initiatives as needed to meet evolving company and customer demands.
🎯 Requirements
- • Experience in compliance, security assurance, GRC, audit, risk management, privacy, or a related function — ideally supporting a SaaS, cloud, AI, legaltech, fintech, healthtech, or public sector environment.
- • Familiarity with security and compliance frameworks such as SOC 2, ISO 27001, NIST 800-53, NIST CSF, HIPAA, FedRAMP, TX-RAMP, or GovRAMP.
- • Hands-on experience collecting audit evidence, maintaining control documentation, tracking remediation, and supporting internal or external assessments.
- • Experience using compliance automation or GRC platforms such as Vanta, Linear, or similar tools.
- • Strong ability to read framework requirements, customer obligations, and regulatory guidance and convert them into actionable project plans.
- • US Citizenship and a non-expired US Passport or state-issued REAL ID driver's license.
🏖️ Benefits
- • Access to company-paid group benefits for you and your family, with $1,000 towards mental health support.
- • Generous time off policies, including holiday closure and monthly paid meals.
- • Annual wellness allowance and parental leave top-ups.
- • Competitive stock option grants as a pivotal early employee.
Skills & Technologies
Remote
About Spellbook Legal Inc.
Spellbook Legal is a legal technology company that leverages artificial intelligence to assist legal professionals. Their core product is an AI-powered drafting tool designed to help lawyers generate, review, and analyze legal documents more efficiently. By integrating with existing legal workflows, Spellbook aims to reduce the time and cost associated with legal work, making legal services more accessible and improving productivity for law firms and in-house legal departments. The company operates within the rapidly growing legal tech industry, focusing on innovation and the application of advanced AI to transform legal practice.
Get more remote jobs like this
Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.
Newsletter
Weekly remote jobs and featured talent.
No spam. Only curated remote roles and product updates. You can unsubscribe anytime.
