Security Compliance Engineer, 6months contract

Responsibilities:Develop, maintain, and improve security and compliance policies, procedures, and standards;Support audits and assessments (e.g., SOC 2, ISO 27001, PCI-DSS, GDPR);Collaborate with cross-functional teams to implement technical and organizational controls;Perform internal security reviews, risk assessments, and gap analyses;Track and remediate compliance findings, exceptions, and non-conformities;Manage third-party risk assessments and vendor compliance;Monitor security controls and generate regular compliance reports;Educate employees and stakeholders on compliance and security awareness;Stay updated on emerging regulations and industry best practices.Requirement:Bachelor Information Technology, Information Security/Assurance, Engineering or related field.Compliance and Privacy Expertise: Familiarity with SOC2, ISO27001, NIST frameworks, GDPR, CPRA, and other privacy standards and frameworks. Hands-on experience is a plus.Technical Skills: Strong understanding of security operations, including log analysis, endpoint security, and vulnerability management.Vendor Management: Experience managing vendor relationships, including performance monitoring and contract negotiation.Customer Interaction: Strong communication skills, with the ability to explain complex security concepts to technical and non-technical audiences.Collaborative Mindset: Proven ability to work cross-functionally with product management, engineering, and customer-facing teams.