Our security team is growing and were looking for a Security and Privacy Compliance Specialist to join our team, lead the compliance efforts across all business units and be the focal point for all internal and external compliance related needs.
This is an opportunity to take an end-to-end ownership of our compliance posture in which youll promote and facilitate excellence in governance with all applicable laws and regulations while ensuring maximum alignment between business needs and regulatory requirements.
Cloudinary is certified for seven (8!) different ISO certifications and is also SOC 2 Type II certified. This position's role is not to establish the basic compliance framework, it is to proactively own all of Cloudinarys security and privacy compliance aspects and take the compliance operations to the next levels while focusing on quality and excellence in all related operations.
Youll have the needed support from relevant stakeholders, helping you to succeed in your role, making this a once-in-a-career opportunity - to take an end-to-end ownership of a very mature compliance organization and push it to new heights and achievements.
Responsibilities:
Own the security and privacy compliance domain, end-to-end.
Be a go-to-person and THE focal point for internal and external stakeholders around everything compliance, security and privacy. This is a customer facing role.
Own all aspects and ensure quality and consistency in Cloudinarys operations, practices, policies and procedures.
Establish, assess and evaluate the effectiveness of compliance controls across ALL business units.
Take end-to-end ownership and manage internal and external compliance audits.
Creatively overcome obstacles so that the compliance controls will operate alongside business activities.
Supervise and monitor risk operations and performance.
Work closely with Cloudinarys Sales, Customer Success, BizDev and legal teams on security and privacy agreements, playing a crucial role in enabling the companys continued growth.
Work closely with Cloudinarys Product and R&D teams on promoting security and privacy roadmaps.
דרישות:
In order to succeed in this role, you need to be:
Extremely proactive, independent and with the highest execution standards. This is an end-to-end ownership position.
Customer facing with a business enablement mindset.
Fast learner and fast executer with the ability to clearly communicate milestones and progress with all relevant stakeholders, internally and externally.
Multitasker with the ability to handle multiple projects and manage varying timelines and deadlines in a dynamic and fast pacing environment.
A people person, able to execute cross-team collaboration and establish relationships across the organization and with external entities.
In order to succeed in this role, you need to have:
3+ years of security governance, risk, and compliance management experience.
Experience working for a global SaaS/Cloud company in a compliance related role.
Experience in working with global enterprise customers.
Vast experience in implementing and maintaining security standards and frameworks (ISO/IEC 27001, SOC 2, NIST, etc.).
Solid understanding of relevant privacy regulations, such as GDPR and CCPA, including first hand experience in working on achieving compliance with their requirements.
Project and/or product skills and experience.
Fluent English, written and verbal - mandatory. Work interfaces are in English.
If you have any of these, it will be a great bonus:
Experience working for one of the top global consultancy firms.
Managing (hands-on) data mapping related processes.
Hands-on Cloud Service Providers technical background.
FedRAMP/HIPAA requirements implementation experience.
Experience with the EU different local privacy laws and legislations .
Previous experience as a project/product manager.
Experience working with governance/compliance supporting SaaS services.
Certified IS המשרה מיועדת לנשים ולגברים כאחד.