Lead Compliance Manager

About Us

Fieldguide is establishing a new state of trust for global commerce and capital markets through automating and streamlining the work of assurance and audit practitioners specifically within cybersecurity, privacy, and financial audit. Put simply, we build software for the people who enable trust between businesses.

We’re based in San Francisco, CA, but built as a remote-first company that enables you to do your best work from anywhere. We're backed by top investors including Growth Equity at Goldman Sachs Alternatives, Bessemer Venture Partners, 8VC, Floodgate, Y Combinator, DNX Ventures, Global Founders Capital, Justin Kan, Elad Gil, and more.

We value diversity — in backgrounds and in experiences. We need people from all backgrounds and walks of life to help build the future of audit and advisory. Fieldguide’s team is inclusive, driven, humble and supportive. We are deliberate and self-reflective about the kind of team and culture that we are building, seeking teammates that are not only strong in their own aptitudes but care deeply about supporting each other's growth.

As an early stage start-up employee, you’ll have the opportunity to build out the future of business trust. We make audit practitioners’ lives easier by bringing together up to 50% of their work and giving them better work-life balance. If you share our values and enthusiasm for building a great culture and product, you will find a home at Fieldguide.

About the Role

Fieldguide is a Vertical AI company building Agents for the most complex workflows in audit. We partner with ambitious enterprise customers, including over 50 of the 100 largest accounting firms, and operate in a $100B+ market undergoing rapid transformation.

We’re looking for a Lead Compliance Manager to own and scale Fieldguide’s compliance programs end-to-end. Our customers are audit and assurance firms, the people whose job it is to evaluate trust and compliance, which means our compliance bar isn’t just high, it’s part of everything we do.

We maintain SOC 2 and ISO 42001 certifications today and are pursuing additional frameworks and certifications. You’ll own all of this: the frameworks, the auditor relationships, the automation, and the tooling that makes it all scale. This role combines compliance program leadership with hands-on GRC engineering. You’ll build the processes and the systems that support them.

What You’ll Own

Compliance program management

- Lead SOC 2 and ISO programs through the full audit lifecycle, scoping, evidence collection, control testing, auditor management, and remediation tracking.

- Drive Fieldguide’s journey towards additional compliance frameworks and standards from gap assessment to audits.

- Own the mapping of controls across overlapping frameworks. Maintain corporate policies, standards, and procedures.

- Manage external relationships with auditors, assessors, consultants, and customers. Coordinate audit timelines, responses, and remediation plans.

GRC automation and tooling

- Build integrations that continuously gather compliance evidence from AWS, GitHub, identity providers, and internal systems. Replace manual screenshots and spreadsheets with automated, auditable pipelines.

- Design and implement continuous control monitoring: surface drift, alert on failures, and maintain dashboards for compliance program health and KPIs.

- Own and operate the GRC platform. Configure control mappings, manage integrations, and ensure the platform accurately reflects our posture.

- Integrate compliance checks into CI/CD pipelines, infrastructure-as-code reviews, and deployment processes. Make compliance a natural part of how engineers ship code.

Customer trust and GTM enablement

- Build and maintain self-serve tools that streamline customer security questionnaires, trust center content, and due diligence processes.

- Partner with GTM teams to handle strategic customer security assessments. Help articulate Fieldguide’s compliance posture in sales processes.

- Reduce time-to-response on security reviews through automation and scalable processes.

Vendor risk and security awareness

- Evaluate and monitor third-party vendors for security and compliance risk. Build and maintain the vendor assessment program.

- Create and deliver security awareness training. Draft security best practices and drive company-wide adoption.

What Success Looks Like

- Fieldguide maintains continuous audit readiness across all frameworks. Audits are routine.

- Compliance with additional frameworks and standards progresses on a clear timeline aligned with business needs.

- Evidence collection and control monitoring are largely automated, freeing time for strategic compliance work.

- GTM teams can respond to customer security assessments quickly and confidently without pulling you into every conversation.

- Engineers experience compliance as a lightweight, integrated part of their workflow rather than a burden.

- You’ll dogfo