Compliance Manager

Summary

Join HubSpot's Compliance Assurance team and contribute to building a secure and efficient future. The team focuses on IT audit, risk, and compliance, developing custom solutions for the organization's unique needs. This role involves managing and mentoring a team, directing SOX compliance work streams, developing IT standards and procedures, and collaborating with various stakeholders. The ideal candidate possesses significant experience in IT SOX audits, IT risk assessments, and IT general controls. A strong understanding of IT frameworks and regulations is essential, along with excellent communication and collaboration skills. HubSpot offers a dynamic team environment and opportunities to challenge the status quo.

Requirements

• Have significant experience leading IT SOX audit engagements and a deep understanding of SOX requirements
• Are proficient in conducting IT risk assessments and developing mitigation strategies
• Possess a strong understanding of IT general controls (ITGC) across security, change management, and computer operations
• Demonstrate proficiency in business process and IT application controls (ITAC) related to financial reporting systems
• Possess a working knowledge of industry-standard IT frameworks and regulations (e.g. COSO, COBIT, NIST CSF, CIS, SOC (1 & 2), PCI DSS, and ISO 27001, to name a few) and demonstrated ability to interpret and apply their requirements to novel system and process implementations
• Are knowledgeable about various operating systems, databases, networking technologies, service delivery implementations (including SaaS, IaaS, and PaaS), microservice and microdatabase architectures, and processes such as CI/CD, Agile, and SecDevOps
• Are highly organized, have a relentless attention to detail and obsess over the quality of your work
• Are comfortable multi-tasking and performing multifaceted projects in conjunction with day-to-day operational activities
• Have excellent oral and written communication skills
• Are an extraordinary collaborator and possess the ability to form strong partnerships with key stakeholders from diverse areas of the business
• Demonstrate a continuous learning mindset and a willingness to stay current with industry best practices
• Are comfortable taking initiative and accepting responsibility for assigned tasks with minimal supervision
• Are service-oriented, yet assertive and persuasive
• Have 6-8 years of technical IT audit and/or advisory experience
• Have hands-on experience in scoping, planning and executing audits and projects
• Demonstrated experience in managing and developing IT audit or compliance staff
• Have a CISA, CIA or equivalent professional qualification

Responsibilities

• Manage and mentor a team of IT Audit & Compliance professionals
• Direct and orchestrate all work streams related to IT SOX compliance, including planning, scoping, risk assessment, testing enablement, and issue management
• Develop, implement, and maintain IT standards, procedures, stakeholder guidance, and tailored control recommendations to ensure adherence to SOX requirements and best practices
• Maintain and update SOX documentation, including risk control matrices, process narratives, and flowcharts
• Participate in system development, acquisition, and implementation projects and advise stakeholders on the design and implementation of internal controls to address process risks and maintain adherence to compliance requirements
• Implement and manage tools and processes for the ongoing monitoring of IT controls and compliance status
• Serve as the central point of contact for audit coordination, scheduling, and managing information flow between control owners and internal/external audit personnel
• Translate business and control requirements into the design of features and enhancements in our compliance tools
• Escalate issues to senior management, develop and negotiate remediation plans and track issues to resolution

Preferred Qualifications

CPA is also strongly preferred (but not required)

Benefits

• Cash compensation range: 146200-233900 USD Annually
• The cash compensation above includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles
• In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs)
• Some roles may also be eligible for overtime pay