Auditor

This mid-career legal and security contractor role involves analyzing and aligning security commitments within legal and contractual frameworks to ensure consistency with real-world security practices of diverse products. The position requires collaboration across legal, product, and security teams to identify discrepancies, propose updates, and help shape future contractual and public-facing security documentation. The contractor will develop comprehensive documentation, manage project timelines, and deliver ongoing updates to support the organization’s security and legal standards.

Responsibilities

• Analyze current security commitments in legal and contractual documents, including product security exhibits and website content.
• Identify discrepancies between actual security practices and documented commitments across multiple products.
• Develop and propose updates to contract language, security exhibits, and web content to reflect accurate security postures.
• Collaborate with legal, security, and product stakeholders through interviews to document current security controls and commitments.
• Create a detailed matrix comparing security posture with existing legal and contractual documentation.
• Draft and negotiate security-related contract language and legal exhibits.
• Develop standard customer contract terms and fallback options for negotiations.
• Manage project timelines, track progress, and report status through weekly updates and monthly executive summaries.
• Maintain an organized project plan, including all ongoing tasks, findings, and recommendations.
• Coordinate and conduct virtual interviews via WebEx with internal stakeholders to gather necessary information.

Qualifications

• Proven legal and audit experience, preferably in a technology or cybersecurity environment.
• Foundational knowledge of security principles, best practices, and controls.
• Experience drafting and negotiating security terms within technology or cybersecurity contracts.
• Strong project management skills, with the ability to handle multiple tasks and deadlines.
• Excellent stakeholder communication skills, capable of translating complex legal and security issues.
• Ability to analyze complex legal documents and incorporate security controls into defensible contract language.
• Certifications such as CISA, CISSP, Security+ or similar security or audit credentials are preferred.
• Adequate remote work setup, with the ability to participate fully in virtual meetings and document collaboration.
• Candidates must be legally authorized to work in the United States.

Publishing Pay Range: $35.00 – $40.00 Hourly

This is a fully remote role and can be performed from an approved location.