Senior Governance, Risk and Compliance Specialist
Remote job description
Snapdocs is a rapidly growing company backed by investors like Sequoia, Y Combinator, F-Prime and Tiger Global. We're an innovative team taking on the extensive mortgage market, bringing scalable and sophisticated software to a pillar of the US economy that still relies on fax machines and manila envelopes.
We are looking for a Senior Governance, Risk and Compliance (GRC) Specialist, a highly proactive and technical individual with proven talent in security process development, policy creation, control framework enhancement capabilities, and excellent risk management skills to minimize any impact associated with data exposure/ data misuse. If you are looking for a high impact GRC position then we have the role for you...
Snapdocs takes security seriously. One of the most important things we do for our clients is to support them in their efforts to be secure and compliant while safely transferring customer information. Reporting to the Director of Governance Risk and Compliance, your first priority will be to manage the deployment of the risk management program and taking our third party risk management program to the next level of maturity. You will be tasked to design and implement cross functional risk management procedures with automated workflows that scale and provide measurable improvements. A champion for continuous improvement, you strive to create and maintain solutions that uphold Snapdocs' continuous compliance with a broad set of ever changing industry standards and regulations.Your day to day will span facilitating customer audits, due diligence requests in support of Sales Enablement, publishing up-to-date standard operating procedures to responding to security and compliance queries from customers and internal stakeholders all while contributing to our compliance roadmap. This position comes with autonomy and accountability as you will be leading multiple GRC projects through to completion with a set of guiding principles. As the subject matter expert for all things GRC you will be involved in rolling out effective security and privacy awareness training for the entire company.
Our ideal candidate will have spent the past 7+ years executing scalable Governance, Risk & Compliance initiatives (think compliance, audit, and risk processes). Ideally you have 3-4 years experience in a cloud service provider (PaaS/SaaS) organization or direct experience with public cloud. In your time, you have developed a deep understanding of security assurance and trust frameworks (think PCI DSS, ISO2700x, NIST 800-53, SOC 2 - AICPA Trust Service Principles, CSA STAR, etc.) while staying on top of evolving privacy and data protection laws (CCPA, GDPR, GLBA Privacy and Safeguards Rules). Most recently, you can be found building certification roadmaps based on customer requirements and compliance documentation while ensuring committed assessments are delivered on schedule. You have developed an expertise with security controls and compliance procedures for AWS at the systems, network, and application level making you the go-to person for solving security related problems with cloud-based services. This role works horizontally across the business to provide guidance for the design and implementation of key security controls, tools and technologies so it requires a high level of professionalism and great communication skills. We are a fully remote team today so any experience working with distributed teams will be beneficial. Bonus points for prior experience with mortgage regulatory compliance and industry best practices (e.g. RON, MISMO, etc.) but not a hard requirement.
Colorado applicants: This role pays $177,800 - $206,600 annually plus equity in the company (pay for other locations may vary).
Snapdocs strongly values diversity and drive. We want to work with people of different backgrounds and different paths in life, and we trust our team to make smart decisions. This means we value independent work as well as collaboration. We provide outstanding benefits (listed below) and while we have hubs in both San Francisco and Denver, we're an extremely remote-friendly company with over a third of our staff outside of those two hubs!
Our benefits include (but are not limited to):
- Excellent health, dental, and vision benefits
- 401(k) with up to 4% company match
- 16 weeks paid parental leave (regardless of gender)
- Flexible time off policy
- Flexible spending account for healthcare and dependent care
- Galileo, Modern Health, Urban Sitter, and Northstar Financial memberships
- Life and disability insurance
- Commuter benefits
- 10 year exercise window on your equity (!!)
Snapdocs is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. If you have a disability or special need that requires accommodation, please let us know.
Company name: SnapDocs
Remote job title: Senior Governance, Risk and Compliance Specialist
Job tags: AWS, Sales Enablement, PaaS