Compliance Manager

About Open Systems

We deliver a cybersecurity experience way beyond expectations. We pioneered a SASE that’s adaptable and scalable, with a true zero trust approach, and a unique MDR service that minimizes disruptions through precision containment. Our teams now monitor over 3 million endpoints 24x7 from our locations around the globe. No wonder we call it crazy good cybersecurity. Discover more at www.open-systems.com.

Compliance Manager

Within the Office of the CISO, you will be responsible for managing Security and Technical Compliance across our growing global company, supporting our overall Trust and Assurance activities expected as a leading MSSP. This is a unique position as you would arrive to lead and manage a cross-cutting set of already well-established certifications, have the ability to further enhance and obtain new certifications, using both a management and hands-on approach within multiple areas.

Your mission

This position will interact with Operations, Product Development teams, multiple well-known audit and assurance partners, and involve communication with some of our leading global customers. You will need both need to be strategic and “roll up your sleeves”, and work with different IT and development teams, yet remain professional enough to interface with auditors, customers, and management. In this multi-faceted role, you will be experience both personal and career growth.

Key responsibilities

Management of Key Certifications & Audits

• Management of a number of certifications that are currently maintained - mainly ISO 27001/17/18, SOC 1 / 2, GDPR etc
• Coordination of internal and external audits, findings, and remediation
• Propose certification planning & audit strategy for existing or emerging needs

Support overall business GRC, security, & privacy objectives

• Support Governance, Risk & Compliance activities
• Develop policy, support business continuity, and privacy activities
• Occasionally research and brief on specific industry topics

Serve as compliance focal point, as well as interface with customers

• Maintain and develop internal communication and training
• Act as internal focal point, working with stakeholders across the organization
• Develop customer communication and documentation as needed
• Support customer and partner assurance around trust and safety
  

Your profile

Required:

• Minimum 5-7 years’ experience overall, with some background in IT or operations
• Minimum 2-3 years’ demonstrated experience working with either ISO 27001 or SOC 1 / 2 certifications or maintenance.
• 1x Security or Compliance related certification (CISA, CISSP, etc).
• Demonstrated ability to work independently, as well as project management experience.
• Fluent Business English
• Bachelors Degree in IT, Engineering or IT Security

Desired:

• 3-5 years experience in a “Big 4” or equivalent consultancy or larger Organization working in the area of Technical Compliance
• Multiple security / compliance related certifications
• IAPP/privacy certification or other privacy-related experience
• Business Continuity or Disaster-Recovery experience / ISO 22301
• Fluency, or knowledge of German or other languages in addition to English
• Experience at a multinational organization or company
• Masters Degree or equivalent

What We Offer

At Open Systems we embrace the agile mindset and strive to continuously improve the way we do things. We are passionate about what we do and work in an environment where we value innovation, creativity, and open communication. The pursuit of user-centered design and technical advancement is at the center of our attention to create value for our customers. Furthermore, you will have the opportunity to participate in coached training programs in areas such as networking and the major internet protocols as well as network security concepts and practices.

Open Systems. Crazy Good Cyber Security

Come as you are! We’re looking for amazing people with diverse backgrounds, experiences, abilities, and perspectives. Open Systems welcomes and encourages diversity in the workplace. Direct applications only will be considered.