Security and Compliance Lead
Guide Mapstone's security, compliance readiness, privacy coordination, and operational risk practices across product and company systems.
About the Role
As Mapstone connects location data, wallet-based products, marketplace activity, and user accounts, trust and operational security become core parts of the platform. The Security and Compliance Lead would help define the controls, documentation, and practices that keep the company prepared.
This role is designed for a senior generalist who can work across application security, vendor risk, privacy operations, incident readiness, and compliance planning without slowing down early-stage execution.
What You Would Work On
- Develop practical security and compliance practices for product launches, data handling, vendor reviews, internal systems, and incident response.
- Coordinate security reviews across smart contracts, frontend, backend, data pipelines, wallet integrations, and third-party services.
- Maintain policies, risk registers, control documentation, access reviews, and vendor due diligence materials.
- Work with leadership, legal, engineering, and operations on privacy, data retention, user trust, and compliance readiness.
- Prepare Mapstone for future audits, enterprise partner reviews, and investor diligence around security and operational controls.
Experience
7+ years in security, compliance, risk, or trust and safety for technology platforms
- Experience building security or compliance programs for startups, fintech, SaaS, marketplaces, Web3, or data platforms.
- Practical understanding of application security, access management, vendor risk, privacy operations, incident response, and control documentation.
- Ability to write clear policies and procedures that teams can actually follow.
- Comfort balancing risk management with the speed and resource constraints of an early-stage company.
Helpful Background
- Experience with SOC 2 readiness, ISO 27001, GDPR or CCPA workflows, smart contract security, wallet risk, or blockchain analytics tools.
- Background working with external auditors, legal counsel, enterprise procurement teams, or investor diligence processes.
Interested in this role?
Introduce yourself and share links that show your relevant work.
About Mapstone
Mapstone Labs builds technology that connects real-world addresses, neighborhoods, and location intelligence to on-chain ownership, rewards, and digital identity. Our platform brings together mapping data, Address NFTs, Neighborhood NFTs, marketplace infrastructure, and Address Quest™ to make physical locations more useful in Web3.
We operate as a remote-first startup with a focus on practical product execution, clear communication, and long-term infrastructure for real-world location data. People who work with Mapstone help shape how mapping, real estate data, and blockchain-based applications can come together in products that users and partners can understand.
Equal Employment Opportunity
Mapstone is committed to equal employment opportunity. We do not discriminate on the basis of race, color, religion, national origin, sex, sexual orientation, gender identity or expression, age, disability, veteran status, genetic information, or any other status protected by applicable law.
We are committed to providing reasonable accommodations for qualified individuals with disabilities throughout the application process. If you need assistance or an accommodation, please use the career interest form and include a brief note about the support you need.
Mapstone does not accept unsolicited resumes from staffing agencies or search firms. Any unsolicited resumes or candidate profiles submitted without a written agreement will be treated as property of Mapstone, and no fees will be owed.