🛠 Tech Stack

💼 About This Role

You'll own compliance execution at Light, running SOC 1, SOC 2, and PCI programmes end to end. Your core impact is making compliance boring, predictable, and scalable while ensuring controls actually work in practice. You'll partner with DevSecOps and engineers to close gaps without slowing delivery.

🎯 What You'll Do

• Run SOC 1, SOC 2, and PCI compliance programmes end to end
• Plan and manage audits, timelines, and auditor relationships
• Own evidence collection, review, and submission
• Track audit findings and ensure remediation with engineering

📋 Requirements

• 3–7 years' experience in compliance, risk, or security roles
• Hands-on ownership of SOC 1, SOC 2, or PCI audits
• Experience working directly with engineering or DevSecOps teams
• Working knowledge of cloud infrastructure and software delivery

✨ Nice to Have

• Experience in fintech, payments, or financial systems
• Familiarity with PCI compliance
• Experience with compliance tooling (Vanta, Drata, Secureframe)

🎁 Benefits & Perks

• 💰 Competitive salary + potential stock options
• 🏝️ 25 days of annual leave + public holidays
• 🥳 Regular socials and company off-sites
• 🚀 Huge opportunity for career growth