As a Compliance Manager, you will support Secureframe through your compliance subject matter expertise. You'll play a key role in helping develop a customer-centric compliance platform to ensure the design, implementation, monitoring, and testing of customer controls across an array of common information security frameworks (SOC 2, ISO 27001, GDPR, CCPA, HIPAA, PCI, and more).

The role will report to the VP of Cybersecurity and Compliance and will work closely with company leadership across Product, Business, and functional teams to ensure our customers are successfully solving their compliance problems.

Benefits

• Medical, dental, and vision benefits for you and your dependent(s)
• Flexible PTO
• 401(k)
• Paid family leave
• Ground floor opportunity as an early member of the team

‍What you’ll do

• Update existing frameworks and build new frameworks within the Secureframe platform across a wide range of cybersecurity frameworks
• Meet and engage with customers and prospects, guiding them through compliance readiness and the effective use of the Secureframe platform
• Meet with auditors to train them on the use of Secureframe in relation to their auditor methodology
• Partner with customer success, business, product, and engineering teams to design and implement new compliance and security offerings
• Stay informed and draft updates on new frameworks, laws, rules, and regulations related to compliance, privacy, and information security

Who we’re looking for

• 2+ years of leading assessments for cybersecurity frameworks such as SOC 2, ISO 27001, or PCI DSS

• Bonus if you have experience with FedRAMP or CMMC

• Demonstrated ability to interpret framework requirements across a range of different cybersecurity frameworks

• Proven experience scoping, leading, performing testing, and reporting on assessments against cybersecurity frameworks

• A self-starter who is driven, sees problems and manifests solutions, and takes action on things they believe can be improved