Compliance Officer - AnchorSix

Compliance Officer

Anchor Six is a subsidiary of Trajector. AnchorSix is a Utah-based Managed Service Provider (MSP) that delivers "Fractional Enterprise IT" for growing small-to-mid-market organizations. AnchorSix is seeking a Compliance Officer to lead both internal and client-facing compliance initiatives as the head of our Security Operations Center (SOC). This role will ensure AnchorSix's own operations meet or exceed all relevant regulatory, cybersecurity, and insurance policy requirements, while also delivering Compliance-as-a-Service (CaaS) to our clients as their Virtual Chief Compliance Officer (vCCO). The Compliance Officer will oversee the SOC team, providing leadership, direction, and operational oversight for all security monitoring, incident response, and compliance functions. This position will design, launch, and refine AnchorSix's CaaS program, including its go-to-market strategy, service delivery processes, and supporting tools. It requires a strategic thinker with deep knowledge of compliance frameworks, strong client communication skills, and the ability to translate complex regulatory requirements into practical, actionable solutions. Competitive compensation ranging from $90,000 - $110,000 per year with total compensation ranging from $112,000 - $132,000 Medical, dental, vision, 401k program, and more Paid time off, including seven (7) federal holidays plus two (2) flex holidays for DEI Joining a rapidly growing organization Responsibilities

Leadership & SOC Oversight

Serve as the interim leader of the Security Operations Center, managing the SOC team and ensuring effective execution of security monitoring, incident detection, and response activities. Provide direction, mentorship, and performance management for SOC analysts and engineers. Align SOC operations with both internal compliance needs and client-facing service requirements. Ensure seamless integration between SOC activities and broader compliance initiatives. Internal Compliance (AnchorSix)

Maintain compliance with all applicable regulatory, contractual, and insurance-based requirements, including cybersecurity and Technology Errors & Omissions (Tech E&O) policies. Interpret and implement requirements from frameworks such as HIPAA, CIS Controls, CMMC, FTC Safeguards, SOC 2, and others as applicable. Conduct internal compliance audits and risk assessments; develop corrective action plans where necessary. Ensure vendor risk management processes are documented and followed. Work with leadership to align compliance objectives with business and operational goals. Maintain accurate compliance documentation and evidence repositories for internal and external audits. Client-Facing Compliance-as-a-Service (vCCO)

Serve as the designated Virtual Chief Compliance Officer for assigned clients across multiple industries, tailoring compliance programs to meet industry-specific needs (e.g., HIPAA, PCI DSS, FTC Safeguards Rule). Lead client compliance assessments, gap analyses, and remediation planning. Guide clients through readiness for third-party audits, certifications, and regulatory inspections. Deliver periodic compliance reports, briefings, and strategic recommendations to client executives. Maintain strong client relationships and serve as a trusted advisor on regulatory and cybersecurity compliance matters. CaaS Program Development & Strategy

Collaborate with leadership to define AnchorSix's CaaS service offerings, pricing models, and delivery standards. Develop marketing and sales enablement materials in collaboration with the marketing team. Identify and select compliance tools, platforms, and automation solutions to streamline service delivery. Create standardized compliance playbooks, reporting templates, and engagement workflows for the vCCO function. Train internal teams on CaaS processes, deliverables, and client engagement best practices. Qualifications

Required Qualifications

Education : Bachelor's degree in Information Security, Risk Management, Compliance, or related field; relevant professional certifications preferred (e.g., CISA, CISM, CRISC, CISSP, CCSK, CIPM). Experience : 4+ years in IT compliance, cybersecurity governance, or risk management roles. Experience working in or with a Managed Service Provider (MSP) environment strongly preferred. Demonstrated success managing compliance for multiple frameworks across diverse industries. Skills : Deep understanding of cybersecurity regulations, risk management principles, and industry standards. Experience managing a Security Operations Center team or similar security function. Strong leadership skills to guide SOC staff and coordinate cross-functional security efforts. Exceptional communication skills with the ability to simplify complex compliance topics for non-technical stakeholders. Project management experience, including program design and rollout. Ability to work independently and manage multiple client engagements simultaneously. Preferred Qualifications

Experience serving in a vCISO or vCCO capacity for multiple clients. Familiarity with compliance automation and governance, risk, and compliance (GRC) tools. Understanding of insurance underwriting requirements for Tech E&O and cyber liability policies. Sales or pre-sales experience in explaining compliance service offerings to prospective clients. Performance Metrics

Internal compliance audit scores and successful insurance renewals. Client satisfaction scores for vCCO engagements. Growth and profitability of the CaaS service line. SOC operational performance metrics (incident detection, response times, SLA adherence). Successful launch and adoption of the CaaS go-to-market strategy. EEO Statement

AnchorSix is an EOE / Veterans / Disabled / LGBTQ employer.