Compliance Manager

About Open Systems

We deliver a cybersecurity experience way beyond expectations. We pioneered a SASE that’s adaptable and scalable, with a true zero trust approach, and a unique MDR service that minimizes disruptions through precision containment. Our teams now monitor over 3 million endpoints 24x7 from our locations around the globe. No wonder we call it crazy good cybersecurity. Discover more at www.open-systems.com.

Compliance Manager

Within the Office of the CISO, you will be responsible for managing Security and Technical Compliance across our growing global company. This is a unique position - as you would arrive to lead and manage a cross-cutting set of already well-established certifications, have the ability to further enhance and obtain new certifications, and have both management and hands-on experience in many areas of security and technical compliance.

Your mission

This position will interact with Operations, Product Development teams, multiple well-known audit and assurance partners, and involve communication with some very well known customer Fortune 1000 Organizations. The role is multifaceted, enabling personal and career growth, as well as broad experience. You will need both need to be strategic and “roll up your sleeves”, and work with different IT and development teams, yet remain professional enough to interface with auditors, customers, and management.

Key responsibilities

Management of Key Certifications & Audits

• Management of a number of Certifications that are currently maintained - mainly ISO 27001/17/18, SOC 1 / 2, GDPR readiness and others
• Coordination of internal an external audits, findings, and remediation
• Propose certification planning & audit strategy for existing or new areas/certifications

Support overall business GRC, security, & privacy objectives

• Support Governance, Risk, & Compliance activities
• Develop policy, support business continuity, and privacy activities
• Occasionally research and brief on specific industry topics

Serve as compliance focal point, as well as interface with customers

• Maintain and develop internal communication and training
• Act as internal focal point, working with stakeholders across the organization
• Develop customer communication and documentation as needed
• Support customer and partner assurance around trust and safety
  

Your profile

Required:

• Minimum 5-7 years’ experience overall, with an IT or operations background
• Minimum 2-3 years’ demonstrated experience working with either ISO 27001 or SOC 1 / 2 certifications or maintenance.
• 1x Security or Compliance related certification (CISA, CISSP, etc).
• Demonstrated ability to work independently, as well as project management experience.
• Fluent Business English
• Degree in IT, Engineering or IT Security

Desired:

• 3-5 years experience in a “Big 4” or equivalent consultancy or larger Organization working in the area of Technical Compliance.
• Multiple security / compliance related certifications.
• IAPP/privacy certification or other privacy-related experience
• Business Continuity or Disaster-Recovery experience / ISO 22301
• Fluency, or knowledge of German or other languages in addition to English
• Experience at a multinational organization or company

What We Offer

At Open Systems we embrace the agile mindset and strive to continuously improve the way we do things. We are passionate about what we do and work in an environment where we value innovation, creativity, and open communication. The pursuit of user-centered design and technical advancement is at the center of our attention to create value for our customers. Furthermore, you will have the opportunity to participate in coached training programs in areas such as networking and the major internet protocols as well as network security concepts and practices.

Open Systems. Crazy Good Cyber Security

Come as you are! We’re looking for amazing people with diverse backgrounds, experiences, abilities, and perspectives. Open Systems welcomes and encourages diversity in the workplace. Direct applications only will be considered.