About the Role:

We are seeking a Security Compliance Lead, within the Cybersecurity team. In this role, the Cybersecurity IT Compliance lead will be responsible for ensuring that all new IT Compliance certifications are obtained smoothly, and all relevant existing certifications are maintained, as necessary. You will work closely with Product, Engineering, Operations, Legal, and Finance teams to ensure all stakeholders are aligned and informed throughout the life of these projects. As a member of the Cybersecurity Team, you will work to improve the set of IT controls that these certifications are reliant upon.

You believe that a strong process helps teams achieve their goals. You are a clear communicator and love working with all kinds of personalities and understand how different teams come together to deliver a quality product. You’re intimately familiar with commonly utilized IT Compliance regimes such as, but not limited to PCI, SSAE18, COSO, ISO27000, GDPR, SOC2, etc. A viable candidate will also have some familiarity with cybersecurity products and processes, although it is not necessary to have experience as a security engineer.

You know how to get teams on board to help move a project forward. You have broad high-level business knowledge and skill sets, and understand how your role plays into overall business-wide objectives. You are innovative, extremely focused, as well as goal and people-oriented at the same time.

Responsibilities:

• Work with appropriate business leaders to develop and maintain a long-range IT Compliance roadmap
• Perform gap assessments, as necessary, to determine the scope of work needed to perform any specific IT Compliance project
• Ensure necessary budgets are prepared for all IT Compliance projects
• Define and track IT Compliance project milestones from start to finish
• Regularly communicate project status to appropriate teams and stakeholders
• Work to ensure detailed timelines are accounted for in the company roadmap, and are tracked at that level
• Mobilize the appropriate teams for a given project, based on defined or intended deliverables
• Ensure teams are following the agreed-upon project structure and appropriately utilizing project management tools
• Hold all teams and contributors accountable for their project deliverables
• Create project timelines based on target release dates, intended project scope, or both
• Escalate to the appropriate leaders when deliverables or milestones are not being met
• Flex to support project team members as needed
• Ensure that the overall IT Compliance efforts are managed at a portfolio level

Requirements:

• 5+ years of project or program management experience
• Advanced English level
• Significant experience with various IT Compliance frameworks
• Hands-on experience with office platforms such as Gsuite or Office 365, as well as project management tools such as JIRA, and with specialized GRC tools such as Zen, Archer, Vanta, or Auditboard.
• Current CISSP, CISM, or similar industry certification, is strongly preferred