Compliance Manager

About the Role

The Compliance Manager ensures the company operates within regulatory frameworks and mitigates legal and operational risks effectively. The Compliance Manager manages the compliance calendar, conducts risk assessments, performs contract reviews, and oversees regulatory audits.

This role is pivotal in ensuring adherence to standards such as SOC2 and CCPA, embedding compliance into the company’s operations through proactive assessments, documentation, and cross-functional collaboration. 

What You Will Work On

Compliance Program Management

• Maintain and oversee the compliance calendar, ensuring timely completion of audits, certifications, and regulatory filings.

• Develop, implement, and update compliance policies and procedures to reflect evolving regulatory requirements.

• Lead the company’s SOC 2 compliance efforts, coordinating internal teams and external auditors to maintain certification.

• Ensure adherence to data privacy laws such as GDPR and CCPA by implementing appropriate protocols and safeguards.

Risk Management and Compliance Assessments

• Conduct compliance assessments to evaluate regulatory requirements, level of effort, risks, and gaps associated with compliance.

• Audit internal processes and systems to ensure alignment with current and upcoming compliance requirements.

• Collaborate with cross-functional teams to prepare for external audits and certifications, ensuring all documentation and processes meet necessary standards.

• Maintain a risk register to track compliance-related risks, their potential impact, and mitigation strategies.

• Regularly review changes in regulatory requirements and assess their impact on the company’s operations.

Contract & Vendor Management

• Develop and implement a structured vendor management process to ensure compliance with regulatory requirements and company policies.

• Evaluate vendor risk, ensuring that third-party providers align with security, privacy, and compliance standards.

• Maintain a centralized repository for contracts, tracking document status, renewals, and compliance obligations.

• Oversee the contract review process, ensuring vendor agreements, NDAs, and other legal documents comply with company policies and regulations.

• Partner with crossfunctional teams to streamline vendor onboarding, contract negotiations, and risk mitigation strategies.

• Conduct periodic vendor audits to assess compliance with contractual and regulatory obligations, escalating risks as needed.

Training and Documentation

• Develop and deliver compliance training programs to educate employees on data privacy, security protocols, and ethical standards.

• Maintain accurate and up-to-date compliance documentation, including policies, procedures, and audit reports.

• Ensure all employees understand their responsibilities under applicable regulations and company policies

Reporting and Escalation

• Provide regular compliance reports, summarizing audit results, key risks, and mitigation strategies.

• Escalate critical legal or compliance issues, ensuring timely resolution and alignment with company strategy.

Who You Are

• Bachelor’s degree in Business, Law, or a related field

• 5-8+ years of experience in compliance, legal, or risk management roles, preferably in SaaS or technology companies

• Strong knowledge of regulatory frameworks such as SOC 2, GDPR, CCPA, and global employment laws

• Proven ability to manage cross-functional initiatives and liaise with external legal counsel

• Excellent written and verbal communication skills, with a focus on creating clear, actionable policies and training materials

• Detail-oriented with strong project management and organizational skills

• You are willing to travel quarterly for team summits, which are sometimes international

Bonus Points 

• _C_ertifications in compliance or risk management (e.g., CCEP, CRCM)