RemoteLeaf Logo
Log in Sign up

Senior Security Assurance Manager

8 hours, 48 minutes ago
United States
Full-time
Lead
Penetration Tester
Cybersecurity
HIPAA LLM
Apply Now
Trase Systems

Trase Systems

Trase Systems specializes in delivering and implementing comprehensive AI agent applications that enable organizations to automate complex administrative workflows and processes securely and efficiently.

Professional Services
Founded 2023
View All Jobs

Description

  • Own and operate Trase's SOC 2 and HIPAA programs end-to-end, including scoping, control design, evidence collection, and remediation tracking.
  • Lead readiness and execution for additional compliance frameworks such as ISO 27001, FedRAMP, NIST 800-53, CMMC, and ISO 42001 as the company enters new markets.
  • Manage the full lifecycle of internal and external audits and serve as the primary point of contact for auditors, assessors, and regulators.
  • Maintain the enterprise risk register and conduct recurring risk assessments across people, process, and technology.
  • Design, document, and operationalize security policies, standards, and procedures aligned to industry frameworks and Trase's risk appetite.
  • Own the common control framework in Drata and refine controls across overlapping regimes to reduce duplication and audit burden.
  • Implement continuous control monitoring, automated evidence collection, and recurring control testing to make compliance more proactive.
  • Define KRIs, KPIs, and reporting cadences that provide leadership with real-time visibility into program health.
  • Enhance third-party risk management, including vendor security reviews, ongoing monitoring, and contractual security requirements.
  • Partner with Legal, Engineering, HR, IT, Finance, and customer-facing teams on shared controls, trust conversations, RFPs, and due diligence.

Requirements

  • 10+ years of progressive experience in security assurance, GRC, controls engineering, or information security audit roles, including several years in a senior or program-owning capacity.
  • Deep, hands-on experience owning or supporting SOC 2 and HIPAA programs end-to-end, including managing external auditors or internal assessors.
  • Strong working knowledge of ISO 27001, FedRAMP (Moderate/High), NIST 800-53, NIST CSF, and CMMC, preferably with experience mapping requirements into common control frameworks.
  • Demonstrated experience designing and operating continuous control monitoring programs.
  • Proven ability to author clear, defensible security policies, standards, procedures, and memoranda.
  • Strong risk management background, including hands-on experience conducting risk assessments and maintaining a risk register.
  • Experience leading customer-facing security reviews, RFP responses, and trust conversations with enterprise buyers or partners.
  • Track record of partnering effectively with engineering and product teams to design controls into systems.
  • Excellent written and verbal communication skills across auditors, executives, customers, and engineers.
  • Strong affinity and practical skill for working with LLMs and AI agents as part of your workflow.
  • Experience scaling a compliance program inside a high-growth startup or scale-up (preferred).
  • Experience with FedRAMP authorization, DoD RMF, HITRUST, or StateRAMP (preferred).
  • Familiarity with ISO 42001 or other emerging AI governance frameworks (preferred).
  • Industry-recognized certifications such as CISSP, CISA, CISM, CRISC, or HCISPP (preferred).
  • Experience supporting customers in healthcare, defense, energy, or other regulated verticals (preferred).
  • Familiarity with modern GRC platforms such as ServiceNow IRM, Vanta, Drata, Hyperproof, or OneTrust (preferred).

Benefits

  • Salary range of $170,000-$230,000.
  • 100% employer-paid medical, dental, and vision coverage for you and your family.
  • Paid maternity and paternity leave for 14 weeks at employees' normal pay.
  • Unlimited PTO with management approval.
  • Opportunities for professional development and continued learning.
  • Optional 401(k), FSA, and equity incentives.
  • Mental health benefits through Tara Mind.
  • Potential for rapid career advancement as the firm grows.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Coalfire

Senior Consultant - FedRAMP Assessment

Coalfire 251-1K Internet Software & Services

Coalfire is hiring a Senior Consultant for remote FedRAMP assessment work, leading security and compliance evaluations for client environments and delivering audit results and guidance to support authorization and risk management objectives.

United States Full-time Senior Penetration Tester
$86k-$148k
AWS Azure Cybersecurity HIPAA
1 day, 3 hours ago
Affirm

Security Risk Management Lead

Affirm 1K-5K Diversified Financial Services

Affirm is seeking a Security Risk Management leader to build and automate its Third Party Security Program, turning GRC processes into scalable security engineering workflows.

United States Full-time Senior Penetration Tester Program Manager
$146k-$225k
AWS Azure GCP Python SQL
1 day, 4 hours ago
Coalfire

Associate, FedRAMP Assessment

Coalfire 251-1K Internet Software & Services

Coalfire is hiring an Associate for FedRAMP Assessment to support cloud security and compliance audits for client organizations against regulatory, industry, and security framework requirements.

United States Full-time Entry Level Penetration Tester
$53k-$92k
AWS Azure Cybersecurity GCP
1 day, 13 hours ago
Coretek

Senior Microsoft Consultant -- E5 | Productivity, Security & Endpoint Management

Coretek 51-250 Internet Software & Services

Coretek is seeking a Senior Microsoft Consultant to lead client-facing Microsoft 365 modernization and security engagements across collaboration, endpoint management, identity, and compliance environments.

United States Full-time Senior Penetration Tester Systems Engineer
HIPAA PowerShell
2 days, 13 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers