Responsibilities:

• Assisting with SpotOn's compliance management function within the Information Security Department
• Deploy common governance, risk, and compliance processes, controls, conducts audits, document, and ensure compliance/data protection
• Develop and implement effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation.
• Performs and investigates internal and external information security risk and exceptions assessments.
• Become a subject matter expert for internal controls within the broader enterprise and provide reliable insight for implementing controls within a business process in an efficient and effective manner

Qualifications:

Research shows that women and members of underrepresented groups tend to apply to roles only when they check every box on a job description. We encourage you to apply if you meet the majority of qualifications and if this role is aligned with your career trajectory.

• 2+ years experience in performing and running certification programs and control assessments, including but not limited to scope planning, defining control procedures based on requirements, policies and standards, control testing, mapping issues to risks and communicating results.
• 2+ years of experience performing PCI and SOC 2 audits
• Strong knowledge of and experience in security risk management and with frameworks including related regulatory compliance requirements (e.g. PCI, SOC, SOX and NIST 800-171 CSF)
• Knowledge of Public Cloud Service Providers (AWS), specifically the types of services offered and industry-standard internal controls and best practices for configuring and managing these services (AWS preferred).
• Knowledge of or experience working with Agile methodology and GRC tools and documents business process responsibilities and ownership of the controls in GRC tool.
• Experience managing multiple projects simultaneously
• Excellent interpersonal, relationship, collaboration and influencing skills
• Excellent presentation, facilitation, executive reporting, and communication skills

Compensation:

• Our base pay range is $80,000 -$110,000 for this role.
• Please note the salary range listed is just one component of a competitive compensation package which includes a company stock plan.
• Offers will be reflective of the candidate's location and experience.

Benefits:

At SpotOn, we put people above everything else. We're known for our innovative software and technology solutions, but we stand out because of the hard-working humans behind the tech. We can't take care of our clients without taking care of our employees first, and that's why we invest in you with a competitive benefits package which includes:

• Medical, Dental and Vision Insurance
• 401k with company match
• Stock Options
• Paid vacation, holiday and sick time
• Headspace membership for guided meditation and stress relieving tools through the Sequoia App*
• Employee Resource Groups for Diversity and Inclusion, Women, LGBTQIA+, and other communities
• Monitor, Keyboard, and Mouse needed for your home office? We got you
• Monthly cell phone and internet stipend
• Unlimited access to virtual audio and visual workouts through the Sequoia App*
• Subscription to Linkedin Learning to expand your knowledge on all kinds of fun topics
• Tuition reimbursement for up to 2k per calendar year to assist with classes of your choice

• for those enrolled in the Anthem plan

SpotOn is an equal employment opportunity employer. Qualified candidates are considered for employment without regard to race, religion, gender, gender identity, sexual orientation, national origin, age, military or veteran status, disability, or any other characteristic protected by applicable law.