What we are looking for:

We're looking for you to join our information security organization as a Senior Global Risk Compliance Manager. Reporting to our Vice President, Chief Information Security Officer, you'll coordinate and execute initiatives across a broad spectrum of governance, risk, and compliance disciplines. Your team will manage compliance and certifications, perform risk management activities, manage 3rd party assurance, and assist sales with customer/prospect inquiries.

In this role, you will: 

• Responsible for creating, deploying, and managing policies, procedures and controls to assure compliance with applicable regulatory and legal requirements as well as good business practices as part of a controls assurance program
• Conducting formal risk analysis and self-assessments program for various Information Services systems and processes
• Directly supporting front-line sales professionals through the operation of a customer security management office (CSMO)
• Responsible for creating, deploying, and managing a comprehensive global privacy protection program
• Deploying and maintaining a 3rd party vendor assurance program
• Identifying, analyzing, and implementing process improvements and effectively communicate and lead change management initiatives
• Working cross functionally to advocate on behalf of both customers and technology professionals needs with internal teams including engineering, product, and IT
• Successfully driving adoption of processes and key metrics that improve performance
• Demonstrating technical understanding of the Quickbase product, the PaaS market, as well as SaaS sales models

Ideally, you'll have:

• 7+ years of information risk experience, including direct experience building and leading an information risk team
• 3+ years of experience interfacing with customers and sales professionals describing information security best practices and internal controls
• In-depth knowledge of various compliance regimes – SOC2, ISO27001are preferred
• Demonstrated experience in understanding and implementing international privacy programs including GDPR and CCPA/CPRA
• Success with developing and leading information risk professionals
• Demonstrated success driving adoption and utilization of information risk processes and key metrics