Compliance Strategist – Security & Privacy

1 Month ago • 5-7 Years

Job Summary

Job Description

The Compliance Strategist will lead and manage security certification programs like SOC 2 Type II, ISO 27001, HIPAA, FedRAMP, and GDPR, ensuring ongoing audit-readiness. They will develop and evolve compliance strategies, aligning them with global regulations and business needs. This role involves driving the adoption of GRC platforms, conducting risk assessments, and collaborating with various teams to implement controls. The strategist will also support the legal and privacy team, prepare responses to security questionnaires, and lead security awareness training, while also monitoring compliance metrics and staying updated on emerging security trends.
Must have:
  • Lead and manage security certification programs (SOC 2, ISO 27001, HIPAA, etc.).
  • Develop and evolve compliance strategy for global regulatory landscapes.
  • Drive the adoption and optimization of GRC platforms (Drata, Vanta).
  • Conduct internal risk assessments and vendor risk reviews.
  • Implement and document technical and administrative controls.
  • Support the legal and privacy team with data protection agreements and GDPR.
  • Prepare responses to customer security questionnaires and RFPs.
  • Lead security awareness and compliance training programs.
  • Monitor, track, and report on compliance and risk metrics.
  • Stay current on emerging security/privacy regulations.

Job Details

DevRev

DevRev’s AgentOS, purpose-built for SaaS companies, comprises three modern CRM apps for support, product, and growth teams. It connects end users, sellers, support, product people, and developers, reducing 9 business apps and converging 6 teams onto a common platform.

Unlike horizontal CRMs, DevRev takes a blank canvas approach to collaboration, AI, and analytics, enabling SaaS companies to increase product velocity and reduce customer churn. DevRev is used by thousands of companies in search of low latency analytics and customizable LLMs to thrive in this era of GenAI.

Headquartered in Palo Alto, California, DevRev has offices in seven global locations. We have raised $100 million in funding from investors like Khosla Ventures and Mayfield at a $1.1 billion valuation. We are also honored to be named on the Forbes 2024 list of America’s Best Startup Employers. Founded in October 2020 by Dheeraj Pandey, former co-founder and CEO of Nutanix, and Manoj Agarwal, former SVP of Engineering at Nutanix, DevRev continues to push the boundaries of innovation, helping thousands of companies thrive in the rapidly evolving landscape of AI-driven SaaS.

Key Responsibilities:

  • Lead and manage security certification programs, including SOC 2 Type II, ISO 27001, HIPAA, FedRAMP, GDPR, and ensure ongoing audit-readiness and regulatory compliance.
  • Develop and evolve compliance strategy, aligning it with evolving global regulatory landscapes and business needs.
  • Drive the adoption and continuous optimization of GRC platforms (e.g., Drata, Vanta) to automate control testing, evidence collection, and reporting.
  • Conduct internal risk assessments, gap analyses, vendor risk reviews, and control testing to maintain a strong security and compliance posture.
  • Partner with Engineering, Legal, Product, HR, and leadership to implement, track, and document technical and administrative controls aligned with compliance frameworks (e.g., NIST 800-53, ISO 27001 Annex A).
  • Support the legal and privacy team in reviewing and operationalizing data protection agreements, international data transfers, and GDPR obligations.
  • Prepare responses to customer security questionnaires, RFPs, and third-party due diligence requests.
  • Lead security awareness and compliance training programs across the organization to drive a culture of security-first.
  • Monitor, track, and report on compliance and risk metrics, KPIs, and remediation plans to stakeholders and leadership.
  • Stay current on emerging security/privacy regulations, threats, and industry trends to advise on strategic risk and compliance impacts.

Required Qualifications:

  • 5 –7 years of relevant experience in Information Security Compliance, GRC, or Risk Management within SaaS or cloud-native environments.
  • Deep expertise in multiple compliance and risk frameworks, including:
  • SOC 2, ISO 27001, NIST 800-53, HIPAA, GDPR, FedRAMP.
  • Proven experience with GRC tools such as Drata, Vanta, Tugboat Logic, or similar.
  • Strong working knowledge of cloud infrastructure environments (AWS, GCP) and how they map to compliance controls.
  • Strong project management and cross-functional collaboration skills.
  • Excellent written and verbal communication, with the ability to influence across technical and non-technical teams.
  • Experience developing and operationalizing compliance playbooks, control libraries, and audit processes.

Culture

The foundation of DevRev is its culture -- our commitment to those who are hungry, humble, honest, and who act with heart. Our vision is to help build the earth’s most customer-centric companies. Our mission is to leverage design, data engineering, and machine intelligence to empower engineers to embrace their customers. 

That is DevRev! 

Similar Jobs

Aisera Jobs - Solutions Architect (Post Sales)

Aisera Jobs

Palo Alto, California, United States (On-Site)
4 Months ago
Rackspace Technology - Cloud Business Consultant

Rackspace Technology

Mexico City, Mexico City, Mexico (Remote)
5 Months ago
NetBrain - Network Assessment & Observability Engineer

NetBrain

Hyderabad, Telangana, India (Hybrid)
4 Months ago
MPOWER Financing - Data Engineer - Data - Bangalore, India

MPOWER Financing

Bengaluru, Karnataka, India (On-Site)
7 Months ago
London stock Exchange - Data Lineage Engineer

London stock Exchange

Bengaluru, Karnataka, India (On-Site)
1 Week ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Optiv - Technical Account Manager

Optiv

Columbia, Maryland, United States (Remote)
2 Weeks ago
Behaviour Interactive - Principal Generalist Programmer - Dead by Daylight

Behaviour Interactive

Quebec, Canada (Hybrid)
3 Months ago
Ion - Data Engineer

Ion

Budapest, Hungary (On-Site)
8 Months ago
Gigamon - Sr. Sales Engineer

Gigamon

Vancouver, British Columbia, Canada (On-Site)
2 Months ago
Optiv - Partner Architect - AWS

Optiv

Kansas City, Missouri, United States (Remote)
1 Week ago
Blinkhealth - Senior Cloud Engineer

Blinkhealth

(Remote)
1 Month ago
warner bros games - Staff Software Engineer - AWS Architecture (Observability Team)

warner bros games

Bengaluru, Karnataka, India (Hybrid)
3 Months ago
Tangelo Games - Lead Data Analyst

Tangelo Games

Barcelona, Catalonia, Spain (Hybrid)
3 Months ago
Ion - Site Reliability Engineer

Ion

Milan, Lombardy, Italy (Hybrid)
8 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Prophecy Simple Data Labs - Senior Backend Engineer

Prophecy Simple Data Labs

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Cadence - Lead Software Developer

Cadence

Hyderabad, Telangana, India (On-Site)
2 Weeks ago
OAO India - MAGENTO/LARAVEL DEVELOPER

OAO India

Pune, Maharashtra, India (Remote)
2 Years ago
velotio technologies  - Data Architect

velotio technologies

Maharashtra, India (Remote)
2 Months ago
NCR Voyix - Java Fullstack Engineer III - Angular

NCR Voyix

Hyderabad, Telangana, India (On-Site)
1 Week ago
Barracuda Networks Inc - Software Engineer

Barracuda Networks Inc

Bengaluru, Karnataka, India (Hybrid)
3 Months ago
bytedance - Payroll Analyst - HR Operations - India

bytedance

Mumbai, Maharashtra, India (On-Site)
2 Months ago
Capgemini - Senior Software Engineer

Capgemini

Coimbatore, Tamil Nadu, India (On-Site)
2 Weeks ago
cyara - Database Engineer

cyara

Hyderabad, Telangana, India (Hybrid)
3 Months ago
Accenture - Warehouse Operations Analyst

Accenture

Mumbai, Maharashtra, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Bengaluru, Karnataka, India (On-Site)

Austin, Texas, United States (On-Site)

New York, United States (On-Site)

Palo Alto, California, United States (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Chennai, Tamil Nadu, India (On-Site)

Ljubljana, Ljubljana, Slovenia (Hybrid)

Bengaluru, Karnataka, India (On-Site)

View All Jobs

Get notified when new jobs are added by DevRev

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug