Broxer
Join
H

Security and Compliance Associate

Habitat Learn

Remote · Part Time

Be the first to apply

Experience
1–2 yrs
Salary
Openings
1
Posted
2 hours ago
Work mode
Work from home
Education
Diploma or degree in Cybersecurity, Protection & Security Investigation, IT Security, Network Security, or a related field
Eligibility
Recent graduates in Ontario from relevant cybersecurity, IT security, network security, or protection and security investigation programs; candidates from equivalent programs or other relevant backgrounds may also be considered.
Resume
Required to apply

Job description

About Habitat Learn

Habitat Learn is an education technology company building products that help make learning more accessible for students. Its offerings include Messenger Pigeon, an AI-based tool for learning, note-taking, and live captioning, and Podium Solution, an on-device classroom accessibility platform designed with privacy and security in mind. The company’s solutions are used by institutions such as Harvard, UC Berkeley, Yale, the University of Toronto, and Humber Polytechnic to create more inclusive learning experiences.

The organization is design-led and places strong emphasis on privacy, security, and data sovereignty. Podium Solution keeps audio processing fully on-device by design. Team members are also provided with Apple hardware to support consistency, security, and performance across internal workflows. As the company expands across North America, it is building out its security and compliance function to better meet institutional expectations and public-sector requirements.

Role Overview

This is a newly established position suited to someone at an early stage in their career who wants to take initiative, learn quickly, and develop within a fast-moving EdTech environment. In this first dedicated Security & Compliance Associate role, you will help strengthen the company’s security and compliance program across frameworks such as SOC 2, ISO 27001, HIPAA, HECVAT, and Texas RAMP.

You will work with support from the Humber Polytechnic Digital Tech Hub cybersecurity assessment and the advisory support that follows. That external input will provide a structured starting point, and your responsibility will be to carry the remediation plan forward internally. You will partner closely with the VP of Engineering and the broader engineering leadership team to make sure security and compliance needs are reflected in everyday product and infrastructure operations.

Employment Details

This role is part-time at 15 to 20 hours per week, with the possibility of transitioning into a full-time position later. It is remote, but candidates must be based in Ontario. The company’s head office is in Toronto. The expected start is as soon as possible.

Key Responsibilities

In this role, you will help coordinate compliance work, support security operations, and keep documentation and follow-ups organized.

  • Assist with compliance activities tied to SOC 2, ISO 27001, HIPAA, HECVAT, and Texas RAMP.
  • Gather, sort, and maintain audit evidence as well as security-related records.
  • Draft and update security policies, procedures, and internal standards.
  • Prepare responses to security questionnaires and HECVAT submissions for institutional procurement.
  • Maintain a compliance tracker and contribute to audit-readiness efforts.
  • Review the findings from the Humber Digital Tech Hub cybersecurity assessment.
  • Track remediation actions and help coordinate follow-up with engineering and leadership.
  • Support updates to the risk register, including documentation of gaps and fixes.
  • Serve as an internal point of coordination for status tracking and reporting.
  • Help manage user access, including provisioning and offboarding.
  • Assist with vendor security reviews and tracking of business associate agreements (BAAs).
  • Support internal security awareness and training activities.
  • Help with Apple device administration processes, including MDM and Apple Business Manager.
  • Support replies to customer security reviews and procurement due diligence requests.
  • Contribute to compliance and security updates for leadership.
  • Stay current on privacy and data protection topics such as FERPA and PIPEDA.

Candidate Profile

The company is looking for a recent graduate who is eager to build a career in security and compliance, is highly organized, and can communicate clearly in writing. The position is intended for someone who is comfortable working independently, can juggle multiple priorities, and is interested in learning how security systems work beneath the surface.

The role is open to candidates across Ontario, and applicants from other locations may also be considered. Students and graduates from relevant programs are encouraged to apply, including those with ties to Humber Polytechnic and similar Ontario institutions. Applications are reviewed continuously.

Education and Experience

Candidates should have completed a diploma or degree within the last 1 to 2 years in Cybersecurity, Protection & Security Investigation, IT Security, Network Security, or a related program. Coursework in cybersecurity frameworks, risk management, or privacy law is considered an advantage. Prior co-op, internship, or volunteer exposure in IT, security, or compliance is also helpful.

Skills and Attributes

  • Strong attention to detail and a methodical approach to documentation
  • Excellent written communication for policy drafting and institutional responses
  • Ability to work independently in a fast-paced, changing environment
  • Interest in security and privacy, along with curiosity about how systems operate
  • Good multitasking and prioritization skills in a startup setting
  • Familiarity with compliance frameworks or security review processes
  • Comfort with enterprise tools and device management concepts

Preferred Experience

  • Exposure to SOC 2, ISO 27001, NIST, HIPAA, or similar frameworks
  • Experience or familiarity with Apple device management or enterprise IT environments
  • Entry-level certifications such as CompTIA Security+ or ISC2 CC
  • Hands-on use of tools like Vanta, Drata, Notion, or Jira
  • Previous co-op, internship, or volunteer work in IT, security, or compliance

How to Apply

Applicants should submit a resume along with a brief paragraph in the summary section of the application form. The company asks candidates to mention the program they studied, any exposure to security, privacy, or compliance work, and why Habitat Learn is of interest to them.

Benefits and Perks

Employees receive a meaningful first role with genuine ownership rather than an internship-style support position. The role includes direct mentorship from the VP of Engineering, access to company leadership, and structured guidance through the Humber Digital Tech Hub cybersecurity assessment. You will gain practical experience across several enterprise compliance frameworks and see real institutional procurement and security processes firsthand. The company also offers a mission-driven product focused on accessibility in education, remote employment, and health benefits.

Additional Information

This position is open to candidates across Ontario, and applicants outside the immediate area may also be considered. The company welcomes graduates from relevant programs and notes that applications are reviewed on a rolling basis.

Skills

Risk Assessment Documentation Management Security Compliance Security Operations Technical Communication Audit Preparation Policy Writing Task Coordination Device management Access Management Privacy Regulations Vendor Security Review

Leave it if you'd like a reply — we won't use it for anything else.

Click to browse, drag & drop, or paste a screenshot

PNG, JPG, GIF, MP4, WebM, MOV · Max 20MB each · Up to 5 files

Broxer Help
Ask anything about using Broxer
Typing…