Compliance Manager

The Mission:

We are looking for a Compliance Manager who acts as a strategic partner to the business.

You will sit at the intersection of Operations, Security, and Law. You are not here to tick boxes. You are here to build a resilient, "audit-ready" organization that can adapt to any future standard without slowing down.

Unified Framework Management

• Manage the lifecycle of our foundational frameworks (ISO 27001, SOC 2, HIPAA, DORA). Ensure controls are effective year-round in OneTrust.You identify the gaps, assign the owners, and close the risks.
• Audit Captain: Coordinate external audits with our GRC Operations and Program Coordinator. You co-manage the timeline, prep the stakeholders, and ensure the evidence room is ready before the auditor asks.

Regulatory Horizon Scanning

• Emerging Regulation: Lead our operational readiness for digital regulations such as the EU AI Act and the EU Data Act. Work with Legal to understand the law, then work with our teams to build the technical controls.

Business Partnership

• Communication: Translate "compliance-speak" into plain English. When you talk to Sales, you talk about trust and revenue. When you talk to Engineering, you talk about efficiency.
• Enablement: Proactively work with department heads to solve blockers. If a security control slows down a product launch, you help design a frictionless, compliant alternative.

Risk & Cyber Governance

• Cyber Fluency: You understand the basics of cloud security (AWS/Azure), encryption, and SDLC. You can have a technical conversation with our CISO.
• Enterprise Risk: Facilitate risk workshops that focus on real business impacts (e.g., "Supply Chain Failure") rather than theoretical checklist risks.

The Ideal Candidate:

• Experience: 4-6 years in GRC, IT Audit, auditing or Tech Risk.
• The "Generalist" Mindset: You are not just a GDPR expert or an ISO auditor. You are a GRC athlete who can read a new standard (like NIS2) and understand what needs to be done by utilising our super- tool OneTrust.
• Tooling: Hands-on experience with OneTrust, Vanta, or similar GRC automation tools.
• Communication: Exceptional soft skills. You can handle pushback from senior stakeholders with diplomacy.
• Certifications: CISA, CIPP/E, CISSP, or ISO Lead Implementer are strong pluses.

Why Join Us?

• Ownership: You aren't a cog in a machine; you are the architect of our compliance program.
• Support: You are backed by  our GRC Operations and Program Coordinator, Legal Counsel, DPO, and our Cyber Security team.
• Modern Stack: We use AI and automation to remove the drudgery of compliance.

• Fixed compensation;
• Long-term employment with the working days vacation;
• Development in professional growth (courses, training, etc);
• Being part of successful cutting-edge technology products that are making a global impact in the service industry;
• Proficient and fun-to-work-with colleagues;
• Apple gear

Omilia is proud to be an equal opportunity employer and is dedicated to fostering a diverse and inclusive workplace. We believe that embracing diversity in all its forms enriches our workplace and drives our collective success. We are committed to creating an environment where everyone feels welcomed, valued, and empowered to contribute their unique perspectives without regard to factors such as race, color, religion, gender, gender identity or expression, sexual orientation, national origin, heredity, disability, age, or veteran status, all eligible candidates will be given consideration for employment.