Serve as the primary point of contact for compliance related requests from customers and for compliance-related contractual obligations with customers, prospects, and vendors.
Respond to customer security due diligence questions, regularly evaluate 3rd party vendors for risk and regulatory compliance.
Maintain the operational compliance obligations, such as access reviews, penetration tests, vendor reviews, and policy reviews, ensuring these are carried out regularly.
Design, develop, and implement robust security controls, policies, standards, and procedures in alignment with best practices.
Measure, evaluate, and report on compliance readiness and adherence, driving improvements as necessary.
What You'll Bring
Understanding of common risks in cloud architecture, SaaS, multi-tenancy, and software development.
In-depth knowledge of Information Security Management Systems (ISMS), including experience with ISO 27001 Standard.
Proven ability to manage the impact of regulatory changes on day-to-day operations.
Passion for bridging the gap between business and technology with experience managing risks that intersect multiple areas of an organization.
Ability to learn new concepts and procedures quickly.
Excellent command of the English language, both written and spoken.