Information Security Compliance Manager

| Greater LA Area

Job description

Who We Are

AuditBoard is a high-growth SaaS company in the financial technology space that is transforming the way organizations manage critical risk, audit and compliance initiatives. We believe in empowering enterprises to manage and control risk so that their businesses are able to thrive.

Designed by former chief audit executives, our enterprise cloud platform is purpose-built to automate and streamline activities in ways that align with how our thousands of users think and act daily. Clients range from pre-IPO organizations to Fortune 5,000 companies, including leading organizations such as WeWork, Activision Publishing, Lions Gate Entertainment Corp., TripAdvisor, Arthur J. Gallagher & Co. and Cox Communications, among many others.

 

Who We Are Looking For

AuditBoard is looking for an Information Security Compliance Manager with advanced and demonstrated people management experience working with SOC2, ISO 27001/17/18, PCI DSS, FedRAMP, CSA Stars, Privacy Framework such as GDPR, Privacy Shield, HIPAA, and other regulations or Compliance Frameworks. This role will manage all Security Compliance activities for AuditBoard and will work across the organization's functions (Engineers, DevOps, Security, Product, IT, HR, Legal groups etc.) to ensure requirements are understood and controls are implemented correctly. This role will also play a crucial role engaging with external parties, including auditors, customers, and vendors as needed.


We’re based in Los Angeles, growing rapidly and looking for bright, motivated people to join us! Learn more at auditboard.com.

Responsibilities:
 

  • Manage all Internal & External Security Compliance engagement activities
  • You will build and manage the programs supporting our existing and ongoing compliance control activities and initiatives
  • Motivate, mentor, challenge, inspire and grow the Compliance team
  • Implement and mature a Unified Control Framework supporting ISO 27001, PCI DSS, GDPR, HIPAA, SOC2, FedRAMP together with supporting policies and standards
  • Work very closely with many cross-functional teams to communicate and integrate control requirements (HR, Finance, Legal, others etc.)
  • Manage a team that will engage directly with Product Engineering through all phases of product design, implementation and ongoing maintenance of Security Compliance activities
  • Manage and communicate compliance requirements, timelines and roadmap to supporting teams and leadership
  • Drive project activities to ensure requirements and schedules are met
  • Identify and manage risks and work with project teams to identify appropriate solutions
  • Manage, track and report compliance related remediation to project teams and Management
  • Maintain ongoing oversight of concurrent, company-wide programs and ongoing initiatives impacting Security Compliance
  • Develop metrics and reporting to demonstrate Compliance status and engagement
  • Communicate the Compliance posture and effectiveness to Management on a scheduled basis
  • Work closely with the Security Compliance Assurance team on audit findings and related remediation
  • Prepare and manage reviews or assessments related to Compliance
  • Provide ongoing guidance and consultation to the organization to promote a progressive and sustainable Security Compliance Engagement program
  • Develop and work with supporting teams to develop an automated control strategy and exception reporting process
  • Develop a strategy to implement and maintain a centralized audit evidence repository to support all Security Compliance evidence gathering and maintenance activities
  • Develop and implement a Customer Engagement strategy and supporting knowledgebase
  • Partner with the Security Risk team to implement a GRC tool
  • Cross-train internal resources and develop team members skills and expertise
  • Integrate ongoing changes to laws, regulations and frameworks as required into daily activities
  • Assist with other Security Compliance activities as required

Requirements

  • 7-9 years working experience within Data Security & Compliance
  • 5 years of Data Compliance Management experience that includes managing people (direct people management)
  • BS or MS in computer science or related field
  • Expert understanding of PCI DSS, GDPR, ISO 27001, SOC, HIPAA regulations and frameworks. FedRAMP would be a plus.
  • Expert understanding of Cloud Controls and environments
  • Strong understanding of common compliance frameworks such as COBIT, COSO, ISO 27K, HITRUST and industry recognized guidance such as NIST
  • A strong foundation in IT solutions development and deployment
  • Practical understanding of IT Security Compliance, risk management and information security principles including access control, network security, information security architecture, information security operations, and leading practices and associated tools in a cloud environment (AWS).
  • Strong analytical, diagnostic, critical thinking and project management skills
  • Excellent problem-solving, negotiation and decision-making skills.
  • Superb ability to represent data in graphical form
  • Excellent written and oral communication skills
  • Strong Engagement skills (Internal & External)
  • Demonstrated experience managing Compliance activities as part of a company (not just in a consulting capacity)
  • Experience implementing a Common/Unified control framework
  • Successful demonstrated experience managing and working with auditors
  • Successful demonstrated experience managing and working with internal cross-functional teams and product engineering groups
  • Successful demonstrated experience communicating and reporting to Senior leadership

Why You’ll Love Life at AuditBoard

  • You’ll be launching a career at a well-funded, hyper-growth SaaS tech company
  • Free daily catered lunches
  • Stock options
  • Unlimited snacks and beverages
  • Free gym membership
  • Medical, dental, and vision coverage for full-time employees
  • 3 weeks of Paid Time Off and 10 holidays per year
  • 401k to save for your future
  • Fun company and team outings - Work Hard Play Hard!
 
Read Full Job Description
Apply now

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • C#Languages
    • C++Languages
    • JavascriptLanguages
    • PythonLanguages
    • SqlLanguages
    • TypeScriptLanguages
    • Twitter BootstrapLibraries
    • DjangoFrameworks
    • Ember.jsFrameworks
    • Node.jsFrameworks
    • KubernetesFrameworks
    • PostgreSQLDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • AmplitudeAnalytics
    • ChameleonAnalytics
    • Segment.ioAnalytics
    • MetabaseAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • FigmaDesign
    • PrincipleDesign
    • LucidchartDesign
    • AsanaManagement
    • JIRAManagement
    • TrelloManagement
    • HubSpotCRM
    • SalesforceCRM
    • OutreachCRM
    • Google AnalyticsLead Gen
    • Google AdsLead Gen
    • Bing AdsLead Gen
    • ZoomInfoLead Gen
    • DiscoverOrgLead Gen

Location

El Segundo and Cerritos offices to attract talent from both LA and Orange County. Offering flexibility and decrease frustrating commutes.

An Insider's view of AuditBoard

What are some social events your company does?

AuditBoard has a culture committee that holds regular social events. Outdoor activities, charities, and happy hour are regularly planned. But also -- the Product team collaborates separately with Engineering, Design and QA to hold team events that are offsite and hilariously fun. Some examples are a trip to the mountains, escape rooms, and Knotts.

Mitch

Director of Product Management

What projects are you most excited about?

The two upcoming projects I'm most excited about are our Slack integration and the development of a public 3rd party developer API. With the release of both of these new initiatives, we'll be giving auditors and developers more powerful ways to interact with our platform.

Josh

Software Engineer

What makes someone successful on your team?

To be successful as a designer at AuditBoard, you need to be eager to learn and collaborate. Since our products focus on an industry that lacks great design, we love designers who can solve complex problems within a given system and be an advocate for the users.

Mac

Visual Designer

What unique initiatives do you have that encourage innovation?

We focus on the following to drive innovation:
- Engage and empower the entire team
- Hire for and build our culture around mentorship and letting the best ideas rise
- Intense focus on the customer and discovering/solving their problems

Hayes

Senior VP of Engineering

How do your team's ideas influence the company's direction?

As part of the Implementation Team, we hear directly from our customers what their needs are, what's working well and what could be improved. We understand their requirements and take that back to Engineering and/or Product to see what the best solution is. Customer feedback definitely plays a role in how we prioritize new releases and features.

Leann

Manager of Implementation

What are AuditBoard Perks + Benefits

Culture
Volunteer in local community
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Wellness Programs
Retirement & Stock Options Benefits
401(K)
Company Equity
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Paid Sick Days
Perks & Discounts
Casual Dress
Company Outings
Free Daily Meals
Game Room
Ping Pong. All-day, every day.
Stocked Kitchen
Some Meals Provided
Employees get free lunch on Monday, Tuesday, Wednesday, Thursday, Friday.
Happy Hours
Happy hours are hosted At team's discretion.
Parking
Fitness Subsidies
Free gym membership
Professional Development Benefits
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Our mentorship program includes 1-to-1 program, Cross-department program.
Online course subscriptions available
More Jobs at AuditBoard24 open jobs
All Jobs
Finance
Dev + Engineer
HR
Marketing
Operations
Product
Project Mgmt
Sales
Content
Developer
new
Los Angeles
Operations
new
Los Angeles
Operations
new
Los Angeles
Operations
new
Los Angeles
Marketing
new
Los Angeles
Content
new
Los Angeles
Finance
new
Los Angeles
Project Mgmt
new
Los Angeles
Developer
new
Los Angeles
Operations
new
Los Angeles
Marketing
new
Los Angeles
Marketing
new
Los Angeles
Marketing
new
Los Angeles
Operations
new
Los Angeles
Product
new
Los Angeles
Project Mgmt
new
El Segundo
Developer
new
Los Angeles
Finance
new
Los Angeles