Resume Score

Check how well your resume matches this job before you apply.

Sign in to check score

About the role

  • Security and Compliance Associate at Habitat Learn, an EdTech company focused on accessibility. Supporting compliance and security operations for multiple frameworks in a remote role based in Ontario.

Responsibilities

  • Support ongoing compliance activities across SOC 2, ISO 27001, HIPAA, HECVAT, and TX-RAMP
  • Collect, organize, and maintain audit evidence and security documentation
  • Help draft and maintain security policies, procedures, and internal standards
  • Complete security questionnaires and HECVAT submissions for institutional procurement
  • Maintain a compliance tracker and support audit readiness activities
  • Review findings from the Humber Digital Tech Hub cybersecurity assessment
  • Track remediation tasks and help coordinate follow-up with engineering and leadership
  • Support updates to the risk register and documentation of control gaps and resolutions
  • Act as an internal coordinator for progress tracking and reporting
  • Support user access controls, provisioning, and offboarding processes
  • Assist with vendor security reviews and BAA tracking
  • Help coordinate internal security awareness and training activities
  • Support Apple device management processes (MDM, Apple Business Manager)
  • Support responses to customer security reviews and procurement due diligence requests
  • Assist in preparing compliance and security status updates for leadership
  • Stay informed on relevant privacy and data protection regulations (FERPA, PIPEDA, etc.)

Requirements

  • Recent graduate (within 1–2 years) of a diploma or degree in Cybersecurity, Protection & Security Investigation, IT Security, Network Security, or a related field
  • Ontario institutions such as Humber Polytechnic, Seneca Polytechnic, George Brown College, or equivalent programs are strongly welcomed
  • Coursework in cybersecurity frameworks, risk management, or privacy law is an asset
  • Strong attention to detail and highly organized approach to documentation
  • Clear written communication skills (policy writing and institutional responses are key parts of the role)
  • Comfortable working independently in a fast-paced, evolving environment
  • Curious about security and privacy, with an interest in understanding underlying systems (not just processes)
  • Ability to manage multiple priorities and stay structured in a startup setting
  • Exposure to frameworks such as SOC 2, ISO 27001, NIST, HIPAA, or similar is a nice to have
  • Familiarity with Apple device management or enterprise IT environments
  • Entry-level certifications (e.g., CompTIA Security+, ISC2 CC)
  • Experience with tools such as Vanta, Drata, Notion, or Jira
  • Prior co-op, internship, or volunteer experience in IT, security, or compliance

Benefits

  • A meaningful first role with real ownership (not an internship-style support role)
  • Direct mentorship from the VP of Engineering and exposure to company leadership
  • Structured guidance through the Humber Digital Tech Hub cybersecurity assessment
  • Hands-on experience across multiple enterprise compliance frameworks
  • Exposure to real institutional procurement and security processes
  • A mission-driven product supporting accessibility in education
  • Remote Employment
  • Health Benefits

Job type

Part Time

Experience level

JuniorMid level

Salary

Not specified

Degree requirement

Bachelor's Degree

Tech skills

Cyber Security

Location requirements

RemoteCanada

Report this job

Found something wrong with the page? Please let us know by submitting a report below.