SOC 2 Consultant – Security Policies & Compliance Preparation - Contract to Hire

Project Type: Consulting / Compliance Duration: Short-term (with potential extension) Experience Level: Expert Industry: SaaS / Pet-Tech / Digital Identification Platforms Project Overview We are a growing technology company operating a SaaS-based digital identification and data platform. As we advance discussions with enterprise and institutional partners, we are preparing for SOC 2 compliance and are seeking an experienced SOC 2 consultant to provide expert guidance and prepare the core policies and documentation required to support this effort. We do not currently have a dedicated compliance specialist in-house and are intentionally seeking external expert leadership to ensure our policies are built correctly, efficiently, and aligned with best practices. Scope of Work The consultant will help us design, draft, and implement SOC 2-ready policies, with a focus on practical, right-sized controls appropriate for a growing SaaS company. Deliverables may include (but are not limited to): Information Security Policy Acceptable Use Policy Access Control & User Management Policy Data Protection & Privacy Policy Incident Response Plan Risk Assessment Framework Change Management Policy Vendor / Third-Party Risk Policy Employee Security Awareness Guidance SOC 2 readiness checklist and gap assessment The engagement is policy-focused and advisory (not an audit), with an emphasis on preparing the company for future SOC 2 Type I / Type II readiness. What We’re Looking For Proven experience leading SOC 2 readiness or compliance for SaaS or technology companies Strong understanding of SOC 2 Trust Services Criteria Ability to translate compliance requirements into clear, usable policies Experience working with early-stage or growth-stage companies Practical, non-overengineered approach (we want policies that are followed, not shelfware) Excellent written communication and documentation skills Nice to Have Experience working with startups preparing for enterprise partnerships Familiarity with cloud-based platforms and distributed teams Prior experience collaborating with external auditors or compliance platforms Engagement Details Initial engagement: Policy creation and readiness guidance Potential follow-on work: SOC 2 roadmap support or audit prep Flexible hours; outcome-driven NDA required To Apply, Please Include Brief overview of your SOC 2 experience Examples of similar SOC 2 policy or readiness work (anonymized is fine) Your recommended approach for a company beginning SOC 2 preparation Estimated timeline for initial policy delivery Apply tot his job