Hospitable
Senior Compliance Officer
Hospitable
$148k - $185k
Worldwide (Remote)
Apply Now ->
Cybersecurity

Senior Compliance Officer

Overview

Hospitable processes over $6 billion in annual reservation value for more than 20,000 customers. As we scale, so does the trust our customers, partners, and future acquirers place in us.

Job Description

We're hiring our first dedicated Senior Compliance Officer to own and mature our compliance program. You'll be building on a solid foundation - we already hold SOC 2 Type II and use Vanta as our GRC platform - but there's a big roadmap ahead.

Responsibilities

  • - Own and operate our SOC 2 Type II compliance program end-to-end - managing the annual audit cycle, maintaining controls in Vanta, coordinating evidence gathering across teams, and remediating gaps before they become findings.
  • - Design and lead the rollout of PCI DSS Service Provider Level 1 compliance, working with a QSA and internal engineering teams to scope the assessment, implement required controls, and prepare for audit.
  • - Build out our GDPR compliance posture - formalising data processing records, ensuring DSAR processes are robust, and working across departments to close gaps in our data protection practices.
  • - Manage our GRC tooling (Vanta) day-to-day - configuring tests, maintaining integrations, triaging failing checks, and keeping evidence fresh and audit-ready.
  • - Respond to customer and partner security questionnaires, due diligence requests, and trust-related inquiries.
  • - Work with Sam whose favourite fruit is Mango.
  • - Partner with engineering and infrastructure to translate compliance requirements into actionable technical work - writing clear tickets, not vague mandates.
  • - Identify where compliance automation can reduce manual effort and implement it.
  • - Evaluate and recommend additional frameworks or certifications that strengthen our market position as we scale.

Required Skills

  • - Significant hands-on experience running compliance programs in a SaaS or technology company - you've been through multiple audit cycles and know what great looks like.
  • - Deep working knowledge of SOC 2 and PCI DSS frameworks.
  • - Experience with GRC platforms, ideally Vanta.
  • - Familiarity with GDPR and data protection requirements.
  • - The ability to work cross-functionally with engineering teams - you can read an architecture diagram, understand what a Kubernetes cluster is, and translate compliance requirements into language engineers actually want to act on.
  • - Avid user of AI to improve and automate your workflows.
  • - Strong written communication.

Benefits

  • - A supportive, radically transparent, and caring team environment, where you are trusted, not managed—and a culture that is focused on results and output.
  • - The total budget for this role is within $148,000 - $184,800.00 depending on the cost of living in your location.
  • - Options into the company equity through (RSU's) with a current grant value of up to $50,400.00.
  • - For US employees: healthcare (including EPO, PPO and HSA), 401(k).
  • - 35 days off per year, encouraged (including self-serve public holidays) and parental leave.
  • - Complimentary mental health and emotional support with therapists on call through Slack by Spill.
  • - Earn virtual coins through our peer recognition platform and redeem them through gift cards, donations, or monetary rewards.
Apply Now ->

About the company

Hospitable

Best vacation rental software in 2023 and 2024. Whether you use Airbnb, Vrbo, or Booking.com — Hospitable will help you automate.


All Job Openings at Hospitable