Compliance Program Manager

Compliance Program Manager

Description -

Job Summary
• The Compliance Program Manager will be responsible for developing, implementing, and managing our established compliance programs to ensure continued adherence to ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2 standards. This role involves working closely with various departments to ensure that all compliance requirements are met and maintained.

Responsibilities
• Oversee and manage existing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
• Conduct regular internal and external audits to ensure ongoing compliance with relevant standards and regulations.
• Act as the business lead for all compliance audits, coordinating with internal teams and external auditors.
• Collaborate with internal teams to identify and mitigate compliance risks.
• Develop and maintain compliance documentation, including policies, procedures, and guidelines.
• Provide training and awareness programs to employees on compliance requirements and best practices.
• Monitor changes in regulations and standards, and update compliance programs accordingly.
• Coordinate with external auditors and regulatory bodies during compliance audits and assessments.
• Prepare and present compliance reports to senior management and stakeholders.
• Ensure continuous improvement of compliance programs through regular reviews and updates.

Education & Experience Recommended
• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
• Typically has 10+ years of work experience, preferably in cyber & IT security, or a related field.

• Proven experience in managing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
• Strong understanding of information security management systems (ISMS) and privacy information management systems (PIMS).
• Extensive experience with internal and external audits, including acting as the business lead for such audits.
• Experience with Cloud Software as a Service (SaaS) and print environments.
• Excellent analytical, problem-solving, and communication skills.
• Ability to work independently and collaboratively in a fast-paced environment.
• Strong attention to detail and organizational skills

Preferred Certifications
• CISSP, CISA, CISM, or equivalent is highly desirable.

Knowledge & Skills
• Cybersecurity operations
• Cybersecurity governance
• Cybersecurity policies
• Auditing
• Risk management
• Automation
• Risk analysis
• Issue tracking
• Security controls
• Operating systems

• Working experience in Azure and/or AWS Cloud

Cross-Org Skills
• Effective Communication
• Results Orientation
• Learning Agility
• Digital Fluency
• Customer Centricity

Impact & Scope
• Impacts large functions and leads large, cross-division functional teams or projects.

Complexity
• Provides highly innovative solutions to complex problems within established policy.

Disclaimer
• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

The base pay range for this role is $102,500 to $157,850 annually with additional opportunities for pay in the form of bonus and/or equity (applies to US candidates only).  Pay varies by work location, job-related knowledge, skills, and experience.

Benefits:

HP offers a comprehensive benefits package for this position, including:

• Health insurance
• Dental insurance
• Vision insurance
• Long term/short term disability insurance
• Employee assistance program
• Flexible spending account
• Life insurance
• Generous time off policies, including; 
  • 4-12 weeks fully paid parental leave based on tenure
  • 11 paid holidays
  • Additional flexible paid vacation and sick leave (US benefits overview)

The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.

Job -

Information Technology

Schedule -

Full time

Shift -

No shift premium (United States of America)

Travel -

Not Specified

Relocation -

Not Specified

Equal Opportunity Employer (EEO) - 

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement