Job Title

Compliance Manager - Risk & ComplianceThe Project/Compliance Manager in Security and Compliance will be a subject matter expert in Information security and regulatory compliance, responsible for supporting and managing compliance programs and projects specifically for (but not limited to) ISO-SOC2-PCI-HIPAA.DutiesLead and manage security and compliance initiatives such as SOC 2, ISO 27k family, PCI DSS, or similar (as applicable), facilitate education, drive issue remediation, and make recommendations that maintain compliance with company commitments.Contribute to the continual development and improvement of the Information Security Management System.Develop and maintain security and compliance governance policiesEnsure alignment with legal, regulatory, and contractual obligationsWork cross-functionally with Product, Engineering, IT, Legal, and Customer teamsLead and manage internal and external regulatory audits and reviews to ensure compliance standards are met and active certification is maintained.Conduct investigations to discover the root cause of issues arising from audit or daily operations and work with teams to manage the closure of any audit findings.Respond to customer questionnaires regarding security and compliance and ensure RFQs are completed with the highest compliance standards.Deliver executive status reports.Required7-10 years of experience in Project or Program Management and regulatory compliance.Have strong knowledge of information security and regulatory compliance.Experience in internal auditing.ISO 27001 Lead/internal auditor certifiedFlexibility to travel for audits as required.Experience in planning and supervising activities for multiple, large-scale projects.