Lead Compliance Manager

Posted 20 Days Ago
Be an Early Applicant
Ottawa, ON
Senior level
Artificial Intelligence • Cloud • Information Technology • Security • Software • Cybersecurity • Data Privacy
Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.
The Role
The Lead Compliance Manager will oversee the compliance program, evaluating internal compliance against frameworks, reporting gaps, managing projects to address those gaps, providing training, and contributing to GRC team development while acting as a compliance advocate within the organization.
Summary Generated by Built In

Every day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced “sneak”) comes in. Snyk is a developer security platform that makes it easy for development teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and cloud infrastructure — and do it all right from the start. Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.



Joining Snyk means embracing our core values: One Team, Care Deeply, Customer Centric, and Forward Thinking. As a member of our team, you’ll have the opportunity to thrive in a dynamic environment where fostering collaboration, leading with empathy, driving business impact, and inspiring trust are at the heart of everything we do.

Our Opportunity: 

We are seeking a knowledgeable and proactive Lead Compliance Manager who has a broad knowledge and experience working with commercial compliance frameworks such as ISO27001,  SOC2, FedRamp, ITGCs to join our rapidly growing (and very friendly) global GRC team, as we continue to scale. This role will report into the Senior Director of Risk, Compliance & Trust.

You’ll Spend Your Time:

  • Leading compliance program enablement and operations in support to the Senior Director of Risk, Compliance & Trust, including program design, implementation, and ongoing maintenance
  • Evaluating internal compliance against required framework controls to identify  known gaps in compliance.
  • Communicating found gaps in controls to peers, key stakeholders and leadership
  • Developing plans and overseeing projects for treatment of compliance gaps, including working cross-functionally to hold stakeholders at all levels accountable to project objectives and timelines, while supporting the company's overall improvement initiatives
  • Developing and providing effective reporting mechanisms and visibility of project status to support ongoing analysis and decision-making
  • Promoting a culture of continuous improvement by providing training and guidance to employees on aspects of security and compliance where appropriate
  • Contributing to the development of the other GRC team members through cross-training and ongoing communications.   
  • Acting as an internal advisor / consultant, subject matter expert, and compliance advocate through the alignment of GRC activities with the overall  company-wide goals and objectives.

What You’ll Need:

  • 8+ total years of experience in GRC roles, including 3+ years of experience in Lead or Senior Governance, Risk & Compliance related roles.
  • A proven track record of successful compliance program implementation and management, preferably in continuous compliance environments.
  • Good industry knowledge of compliance and security best practices and frameworks.
  • Experience working in technical and developer focused organizations and SaaS industry.
  • Exceptional communication and interpersonal skills and fundamentally believe in the importance of using compliance to enable business as well as protect it.
  • Ability to formulate recommendations for Senior Leaders.
  • Excellent analytical and problem-solving skills.
  • Knowledge of cloud security and infrastructure.
  • CISA or CISSP certification would be advantageous.

#LI-TF1

We care deeply about the warm, inclusive environment we’ve created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you’re the right person, do apply anyway!


About Snyk

Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.

Benefits & Programs

Prioritize health, wellness, financial security, and life balance with programs tailored to your location and role.

  • Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development
  • Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers
  • Health benefits, employee assistance plans, and annual wellness allowance
  • Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances

What the Team is Saying

Erica
Ciana
Carissa
Brian
The Company
HQ: Boston, MA
1,000 Employees
Hybrid Workplace
Year Founded: 2015

What We Do

Every day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced “sneak”) comes in.

Snyk is a developer security platform that makes it easy for development teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and cloud infrastructure — and do it all right from the start.

Why Work With Us

Every team member at Snyk contributes to our vision for a more secure digital world. No matter where we are in the world, we operate as one team and work together to shape the future of application security. We take immense pride in the diversity of our people, cultures, and experiences.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Snyk Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Typical time on-site: Flexible
Company Office Image
HQBoston
Company Office Image
Singapore
Company Office Image
Bucharest
Company Office Image
Cluj-Napoca
Company Office Image
London
Company Office Image
Ottawa
Sydney
Company Office Image
Tel Aviv
Tokyo, JP
Zürich
Learn more

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account