Compliance Manager - Governance and Risk
2 weeks ago
Evaluate and maintain procedures, and controls for SpyCloud systems (internally developed and third-party).
Help define SpyCloud’s GDPR, data handling, data protection, and privacy standards.
Help define the direction and the selection of a control framework. (CIS 20, SOC 2).
Collaborate with partners across the business (Finance, Accounting, Security, Engineering, etc.) to track remediation of controls and security control gaps.
Conduct self-assessments/audits to confirm SpyCloud adherence to internal policies, compliance goals, and industry best practices.
Help support external audits of our and control environments.
Develop workflow to address customer questionnaires and SpyCloud’s overall response strategy.
Perform detailed control testing for in scope systems. Document and communicate findings with the GRC team and, where necessary, process owners.
Assist with security and enterprise risk assessments across the organization.