Experience Inc. Jobs

Job Information

StackPath Compliance Manager in Dallas, Texas

About StackPath

StackPath is a platform of secure Internet services built at the cloud's edge. StackPath services enable developers to build protection and performance into any cloud-based solution—from apps, to games, web sites, and beyond—without needing cloud security and delivery expertise of their own. More than 800,000 customers already use StackPath services, ranging from early-stage enterprises to Fortune 100 organizations. Headquartered in Dallas, Texas, StackPath has offices across the U.S. and around the world. For more information, visit stackpath.com and follow StackPath at www.fb.com/stackpathllc and www.twitter.com/stackpath .

About the Role

The Compliance manager is responsible for empowering the business, both domestic and abroad, through strategic leadership and tactical excellence in compliance. This position is highly collaborative and champions compliance objectives and initiatives across the enterprise and will be responsible for defining, implementing and leading a compliance function in the company. This role oversees compliance requirements (i.e. SOC2, ISO27001, PCI DSS, HIPAA, NIST, and others) through strategy development, controls definition and assessment and process oversight.

This role will report to our: Vice President Global Security and Compliance

Essential Duties and Responsibilities

  • Proactively protect the confidentiality, availability, and integrity of all customer and company data

  • Directly responsible for policies, procedures and controls to assure compliance with applicable regulatory, legal and audit requirements as well as good business practices

  • Develop compliance strategy and approach and ensure compliance with SOC2, ISO27001, PCI DSS, HIPAA, and contractual requirements and globally recognized standards and regulation including privacy (GDPR, CCPA, other state regulation)

  • Accountable for compliance with Sarbanes-Oxley, PCI DSS, Department of Commerce Safe Harbor, HIPAA and telecommunications customer requirements

  • Identify regulatory, legislative, and industry specific compliance requirements and define controls that can be used to meet those requirements

  • Act as compliance officer and serves as the intake on compliance related inquiries and coordinating with subject matter experts

  • Set up an internal audit function -- conduct periodic internal reviews or audits to ensure that compliance procedures are followed

  • Formalize the requirements for ongoing audits, in terms of controls definition and tracking for periodic evidence needed (e.g. quarterly/annual reviews for risk management, access control, firewall rules, etc.)

  • Conduct or direct the internal investigation of compliance issues

  • Assess product, compliance, or operational risks and develop risk management strategies

  • File appropriate compliance reports with regulatory agencies

  • Disseminate written policies and procedures related to compliance activities

  • Serve as a confidential point of contact for employees to communicate with management, seek clarification on issues or dilemmas, or report irregularities

  • Discuss emerging compliance issues with management or employees

  • Advise internal management or business partners on the implementation or operation of compliance programs

  • Provide employee training on compliance related topics, policies, or procedures

  • Monitor compliance systems to ensure their effectiveness

  • Prepare management reports regarding compliance operations and progress

  • Keep informed regarding pending industry changes, trends, new regulatory requirements, and best practices and assess the potential impact of these changes on organizational processes

  • Design or implement improvements in communication, monitoring, or enforcement of compliance standards

    Desired Skills and Experience

  • Demonstrated knowledge of industry authoritative sources such as NIST, SOC2, ISO standards

  • Major compliance certification (CCP, CRISC, or equivalent) required

  • A minimum of three years of hands-on compliance experience with ISO standards

  • Must be knowledgeable about ISO 27001 requirements and have worked in an ISO-compliant environment for at least 3 years

  • Experience with the software and systems development and QA life cycle. SaaS experience preferred

  • Knowledge of complex application, network, host and virtual system operations preferred

  • Ability to relate business requirements and risks to policy and technology implementation

  • Expert level knowledge of risk assessment and remediation methodology, processes and procedures

  • Proven ability to manage projects and implementations across organizations

  • Strong collaborative approach and ability to effectively interface with technical staff, senior management and customers

  • Strong project management experience with ability to work closely with our project management office

  • Excellent verbal and written communication skills, and ability to author documentation as required

    This job description is not intended to be all-inclusive.

    StackPath is an Equal Opportunity Employer. EOE/AA M/F/D/V

    If your experience and qualifications match our current needs, a member of our human resources team will contact you. We look forward to hearing from you.

    StackPath collects and processes personal data submitted by job applicants in accordance with our Privacy Policy (https://www.stackpath.com/legal/privacy-statement/)

Powered by JazzHR

DirectEmployers