Compliance Program Manager
TW2NC - Teleworker/Offsite-USA-NC
Description -
Job Summary
• The Compliance Program Manager will be responsible for developing, implementing, and managing our established compliance programs to ensure continued adherence to ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2 standards. This role involves working closely with various departments to ensure that all compliance requirements are met and maintained.
Responsibilities
• Oversee and manage existing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
• Conduct regular internal and external audits to ensure ongoing compliance with relevant standards and regulations.
• Act as the business lead for all compliance audits, coordinating with internal teams and external auditors.
• Collaborate with internal teams to identify and mitigate compliance risks.
• Develop and maintain compliance documentation, including policies, procedures, and guidelines.
• Provide training and awareness programs to employees on compliance requirements and best practices.
• Monitor changes in regulations and standards, and update compliance programs accordingly.
• Coordinate with external auditors and regulatory bodies during compliance audits and assessments.
• Prepare and present compliance reports to senior management and stakeholders.
• Ensure continuous improvement of compliance programs through regular reviews and updates.
Education & Experience Recommended
• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 10+ years of work experience, preferably in cyber & IT security, or a related field.
• Proven experience in managing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
• Strong understanding of information security management systems (ISMS) and privacy information management systems (PIMS).
• Extensive experience with internal and external audits, including acting as the business lead for such audits.
• Experience with Cloud Software as a Service (SaaS) and print environments.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and collaboratively in a fast-paced environment.
• Strong attention to detail and organizational skills
Preferred Certifications
• CISSP, CISA, CISM, or equivalent is highly desirable.
Knowledge & Skills
• Cybersecurity operations
• Cybersecurity governance
• Cybersecurity policies
• Auditing
• Risk management
• Automation
• Risk analysis
• Issue tracking
• Security controls
• Operating systems
• Working experience in Azure and/or AWS Cloud
Cross-Org Skills
• Effective Communication
• Results Orientation
• Learning Agility
• Digital Fluency
• Customer Centricity
Impact & Scope
• Impacts large functions and leads large, cross-division functional teams or projects.
Complexity
• Provides highly innovative solutions to complex problems within established policy.
Disclaimer
• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.
The base pay range for this role is $102,500 to $157,850 annually with additional opportunities for pay in the form of bonus and/or equity (applies to US candidates only). Pay varies by work location, job-related knowledge, skills, and experience.
Benefits:
HP offers a comprehensive benefits package for this position, including:
- Health insurance
- Dental insurance
- Vision insurance
- Long term/short term disability insurance
- Employee assistance program
- Flexible spending account
- Life insurance
- Generous time off policies, including;
- 4-12 weeks fully paid parental leave based on tenure
- 11 paid holidays
- Additional flexible paid vacation and sick leave (US benefits overview)
The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.
Job -
Data & Information TechnologySchedule -
Full timeShift -
No shift premium (United States of America)Travel -
Not SpecifiedRelocation -
Not SpecifiedEqual Opportunity Employer (EEO) -
HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).
Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.
If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement
ApplyJob Profile
Applies to US candidates only Holidays Teleworker/Offsite
Benefits/PerksComprehensive benefits package Dental Insurance Disability Insurance Employee assistance Employee Assistance Program Flexible Spending Account Generous time off Health insurance Life Insurance Paid holidays Paid parental leave Vision Insurance
Tasks- Collaborate with internal teams
- Conduct audits
- Develop compliance programs
- Manage compliance documentation
- Monitor regulations
- Prepare compliance reports
- Provide training
- Relocation
- Training
Analytical Auditing Automation AWS Azure Cloud Cloud Software Communication Compliance Compliance management Computer Computer Science Cross-org Customer Centricity Cybersecurity Digital fluency Effective Communication ISO 27001 ISO 27017 ISO 27701 IT Security Learning agility Operating Systems Organizational Problem-solving Results Orientation Risk Management SaaS Security Security Controls SOC 2 Type 2 Training
Experience10 years
EducationBusiness Computer Science Degree Equivalent Four-year degree Graduate Degree Information Technology Related discipline
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9