Remote Compliance Engineer

As a member of the Compliance Team, you will play a critical role in supporting the security manager to maintain, improve, and expand the company’s compliance programs. You will be responsible for managing day-to-day compliance activities, working with internal teams, and liaising with external auditors and regulatory bodies. Your role will be pivotal in ensuring the company continues to meet and exceed regulatory standards, including PCI DSS, SOC-1, SOC-2, SOC-3, ISO certifications, and data privacy frameworks.

$70,000 - $75,000 a year

WHAT YOU’LL DO:

Compliance Program Development and Maintenance:

-Assist in building and maintaining the company’s comprehensive compliance program.

-Design, implement, enforce and continuously improve internal policies, procedures and internal controls to meet regulatory requirements (Ex. PCI DSS, SOC, ISO, Data Privacy).

-Develop a roadmap to ensure compliance with emerging regulatory standards and customer expectations.

-Maintain documentation of the compliance program and update as needed to reflect changes in regulations and business operations.

Compliance Program Support:

-Support internal teams to ensure compliance with security and privacy controls, regulations, and standards.

Audit Preparation and Coordination:

-Support external and internal audits, including coordination of audit requests, gathering required documentation, and facilitating discussions between auditors and internal teams.

-Assist in the remediation of audit findings and monitor the effectiveness of corrective actions.

Cybersecurity Responsibilities:

-Assist other teams in maintaining a robust cybersecurity framework aligned with NIST, CIS Controls, and other relevant standards.

Identify and analyze potential security threats, vulnerabilities, and risks to the company’s systems and data.

-Participate in cybersecurity incident response efforts, including documentation and reporting on any security breaches or data privacy incidents.

-Help ensure compliance with security-related frameworks, such as SOC 2 and PCI DSS, and participate in regular cybersecurity risk assessments.

Compliance Monitoring and Reporting:

-Monitor compliance with internal controls and regulatory requirements, identifying areas for improvement or potential gaps.

-Track and report on the status of compliance activities, initiatives, and projects.

-Develop and maintain compliance metrics to provide clear visibility to stakeholders.

Training and Awareness:

-Support the creation and delivery of compliance training programs for staff to ensure ongoing awareness of key compliance requirements and industry best practices.

-Promote a culture of compliance throughout the organization by fostering communication and providing resources to different departments.

Risk Assessment and Incident Management:

-Assist in conducting risk assessments related to compliance and security, identifying potential risks and recommending mitigation strategies.

-Support the security manager in responding to security and data privacy incidents, ensuring compliance with breach reporting requirements.

Regulatory Updates and Continuous Improvement:

-Stay informed of changes to relevant regulatory requirements and industry standards.

-Collaborate with cross-functional teams to implement continuous improvements in the compliance program.

WHAT YOU’LL BRING:

Education and Experience:

-Bachelor’s degree in information security, compliance, or a related field (advanced degrees or certifications such as CISA, CISM, or CIPP are a plus).

-2+ years of experience in a compliance role, preferably within the technology or software industry.

-Experience working with one or more of the following frameworks: PCI DSS, SOC, ISO, GDPR, CCPA, or other data privacy laws.

Skills and Competencies:

-Strong understanding of regulatory compliance and industry standards such as PCI DSS, SOC-1, SOC-2, SOC-3, ISO, GDPR, and other data privacy regulations.

-Excellent organizational skills with attention to detail.

-Strong problem-solving skills with the ability to analyze and mitigate risk.

-Effective communication skills, both written and verbal, for collaborating with internal and external stakeholders.

-Ability to manage multiple projects simultaneously and prioritize in a fast-paced environment.

-A proactive approach to staying up to date on the latest developments in regulatory requirements and industry standards.

Preferred Qualifications:

-Experience supporting compliance in SaaS or cloud environments.

-Knowledge of security frameworks such as NIST or CIS Controls.

-Familiarity with automated tools used to support compliance efforts.

WHAT YOU SHOULD KNOW ABOUT US:

• We are laid back but buttoned up. We offer a casual work environment and remote work flexibility and have a passion for developing creative, innovative best in class solutions that directly contribute to the success of our customers

• We care deeply and deliver service and solutions that make a real difference in the lives of our clients and their businesses

• We openly accept others as they are and build strong partnerships based on trust

• Teamwork and collaboration is key to help our colleagues and customers solve their challenges

• Our team is energetic, fun, naturally inquisitive and eager to make an impact, we invite you to join us!

LOVE WHAT YOU DO, NO MATTER WHERE YOU DO IT:

• Join our Remote-First Global Work Community: WorkWave provides an innovative and dynamic remote-first Global Work Community that encourages growth, creativity, and collaboration. No matter what stage of your career or where you live, WorkWave is your place to be part of a global company with a startup feel, where your ideas matter and your growth is a priority.

A GLOBAL COMPANY WITH A LOCAL PRESENCE:

• We know that there are benefits of being in the office and working from home. WorkWave promotes a healthy work/life balance and provides employees with the flexibility of collaborating in the office or the option to work virtually if desired. Our teams are well versed at working collaboratively in a fully virtual environment.

• Our HQ is based at our state of the art home office in the historic Bell Works complex located in Holmdel Township, New Jersey. We keep our offices available to all to use when working remotely isn’t feasible, or to help with cross training, team building and/or brainstorming.

• We have employees in over 30 states, 7 countries and many regional offices - each with their own set of perks and opportunities to give back to the local community.

• Whether you work remotely or take advantage of one of our offices, you’ll find a community of WorkWavers that value diversity, and care deeply about our products, clients, our communities and each other.

RELAX, WE’VE GOT YOU COVERED:

• Employees can expect a robust benefits package, including health and dental and 401k with company match

AND BEYOND…

• Find your perfect work/life balance with our Flexible Time Off policy or generous PTO plan (role dependent) and paid holidays

• Up to 4 weeks paid bonding leave

• Free subscription to the Calm App for you and up to 4 dependents!

• Tuition reimbursement

• Robust Employee Assistance Program through TotalCare offering free counseling 24/7/365, plus financial counseling, legal guidance, adoption assistance services and much more!

• ²⁴⁄₇ access to virtual medical care with Teladoc

• Quarterly awards based on peer nominations

• Regional discounts and perks

• Opportunities to participate in charitable events and give back to the community

GROW WITH US:

• We understand the impact of attracting and keeping top talent and reward intellectual curiosity and a thirst for personal and professional growth

• Encouraging our employees that already have an intimate knowledge of and passion for our products to apply for other roles within our walls just makes sense!

• Our employees have access to extensive video libraries for soft skill and role specific training available ²⁴⁄₇ and live trainings are provided throughout the year

JOIN OUR WINNING TEAM!

• 10 Time winner of Best Place to Work in New Jersey by NJBiz!

• WorkWave has been recognized with multiple awards for its outstanding products, growth and culture, including the Inc. 5000, SaaS Award, IT World Awards, Globe Awards, Silver Stevie Award for Employer of the Year, and Best Place to Work Inc. Magazine

• Recently named one of The Software Report’s 3rd annual list of the Top 100 Software Companies of 2022 (worldwide!)

We’re an equal opportunity employer. All applicants will be considered for employment without attention to race, color, age, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status: Don’t meet every single requirement? Studies have shown that women and people of color are less likely to apply to jobs unless they meet every single qualification. At WorkWave, we are dedicated to building a diverse, inclusive and authentic workplace, so if you feel like you could make a great impact in this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may just be the right candidate for this or other roles!

WorkWave supports salary transparency, however please note that salary estimates provided by websites (LinkedIn, Glassdoor, etc.) and not by WorkWave may not accurately reflect the actual salary range for the position.