Trunk Tools
Part-Time Contract SOC 2 & Security Compliance Engineer (Remote)
Trunk Tools, New York, New York, us, 10261
At Trunk Tools, we are tackling the massive $13 trillion+ construction industry. We're an exceptional team of serial entrepreneurs, brought together by our shared mission: automating construction. Our founding team (SpaceX, Stanford, MIT, Carta, etc.) has successfully built and deployed software in construction for 140k+ users, millions of users beyond the construction space, and worked on +$2 billion of built-environment projects. We aren't another out-of-touch tech startup, most of our team comes from construction.
We spent the last few years building the brain behind construction. Now we are deploying workflows/ agents, starting with Q&A document chatbot, to be ingrained in construction teams' workflows, ultimately to automate construction. Given our immense traction with several Fortune 500 construction companies, we are doubling our team in order to deploy several more agents this year. You will have an opportunity to drive the transformation of a multi-trillion-dollar industry full of waste, risks and inefficiencies.
What you will do and achieve:
SOC 2 Compliance:
Ensure ongoing compliance with SOC 2 requirements, working closely with Vanta to identify, remediate, and monitor compliance issues, maintaining our certification status.Security Questionnaires:
Take ownership of responding to customer security questionnaires, collaborating with internal teams to gather the necessary information and provide accurate, timely responses.Audit Support:
Prepare for and manage SOC 2 audits, including the collection of evidence, coordination with auditors, and implementation of audit recommendations.Process Documentation:
Develop, update, and maintain security-related documentation and processes, ensuring they are clear, comprehensive, and align with industry best practices.Continuous Improvement:
Proactively identify areas for improvement in our security and compliance processes, proposing and implementing solutions to enhance our overall security posture.Who you are:
Experience:
3-5 years of experience in security compliance roles, with a strong focus on SOC 2 compliance and handling security questionnaires.Compliance Expertise:
In-depth understanding of SOC 2 requirements and experience working with compliance platforms like Vanta.Communication:
Excellent written and verbal communication skills, with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders.Detail-oriented:
Strong attention to detail, especially when documenting processes or addressing compliance concerns.Audit Savvy:
Familiarity with audit processes, evidence collection, and working with external auditors to achieve compliance goals.Proactive Problem Solver:
Ability to anticipate security and compliance needs, propose solutions, and execute them effectively.Contract Details:
Hours:
Part-time, flexible hours depending on project needs.Location:
RemoteCompensation:
Competitive hourly rate, commensurate with experience.What we offer
A close-knit and collaborative early-stage startup environment where every voice is heard and every opinion matters; currently we're 25 team membersAccess to company resources and tools to ensure effective job performance.Flexibility to balance work with other commitments, with the potential for contract extension or transition to a full-time role.
We realize applying for jobs can feel daunting at times. We don't expect you to check all the qualification boxes and encourage you to apply if you have experience in some of the areas.
At Trunk Tools, we're working hard to build a more productive and safer environment within the construction industry, and we strive to live by these same values here at Trunk Tools HQ. As an equal-opportunity employer, we are committed to building an inclusive environment where you can be you. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, pregnancy, gender expression or identity, sexual orientation, or any other legally protected class.
We spent the last few years building the brain behind construction. Now we are deploying workflows/ agents, starting with Q&A document chatbot, to be ingrained in construction teams' workflows, ultimately to automate construction. Given our immense traction with several Fortune 500 construction companies, we are doubling our team in order to deploy several more agents this year. You will have an opportunity to drive the transformation of a multi-trillion-dollar industry full of waste, risks and inefficiencies.
What you will do and achieve:
SOC 2 Compliance:
Ensure ongoing compliance with SOC 2 requirements, working closely with Vanta to identify, remediate, and monitor compliance issues, maintaining our certification status.Security Questionnaires:
Take ownership of responding to customer security questionnaires, collaborating with internal teams to gather the necessary information and provide accurate, timely responses.Audit Support:
Prepare for and manage SOC 2 audits, including the collection of evidence, coordination with auditors, and implementation of audit recommendations.Process Documentation:
Develop, update, and maintain security-related documentation and processes, ensuring they are clear, comprehensive, and align with industry best practices.Continuous Improvement:
Proactively identify areas for improvement in our security and compliance processes, proposing and implementing solutions to enhance our overall security posture.Who you are:
Experience:
3-5 years of experience in security compliance roles, with a strong focus on SOC 2 compliance and handling security questionnaires.Compliance Expertise:
In-depth understanding of SOC 2 requirements and experience working with compliance platforms like Vanta.Communication:
Excellent written and verbal communication skills, with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders.Detail-oriented:
Strong attention to detail, especially when documenting processes or addressing compliance concerns.Audit Savvy:
Familiarity with audit processes, evidence collection, and working with external auditors to achieve compliance goals.Proactive Problem Solver:
Ability to anticipate security and compliance needs, propose solutions, and execute them effectively.Contract Details:
Hours:
Part-time, flexible hours depending on project needs.Location:
RemoteCompensation:
Competitive hourly rate, commensurate with experience.What we offer
A close-knit and collaborative early-stage startup environment where every voice is heard and every opinion matters; currently we're 25 team membersAccess to company resources and tools to ensure effective job performance.Flexibility to balance work with other commitments, with the potential for contract extension or transition to a full-time role.
We realize applying for jobs can feel daunting at times. We don't expect you to check all the qualification boxes and encourage you to apply if you have experience in some of the areas.
At Trunk Tools, we're working hard to build a more productive and safer environment within the construction industry, and we strive to live by these same values here at Trunk Tools HQ. As an equal-opportunity employer, we are committed to building an inclusive environment where you can be you. We work hard to evaluate all employees and job applicants consistently, without regard to race, color, religion, gender, national origin, age, disability, pregnancy, gender expression or identity, sexual orientation, or any other legally protected class.