Head of Compliance

Who we are

We're a leading, global security authority that's disrupting our own category.  Our encryption is trusted by the major ecommerce brands, the world's largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers.  We help companies put trust - an abstract idea - to work. That's digital trust for the real world.

Job Summary 

We are seeking a Head of Compliance to join the Trust Office team at DigiCert. The successful candidate will be responsible for overseeing and managing all aspects of the Company’s compliance program, including ensuring adherence to regulatory requirements, internal policies and industry standards. This role requires a leader with a strong knowledge of regulatory frameworks, exceptional analytical and organizational skills and the ability to effectively communicate and collaborate with internal and external stakeholders. The role will report to DigiCert’s VP of GRC and will be part of the Trust Office team.

What you will do

• Manage a comprehensive compliance program to ensure adherence to all applicable laws, regulations and industry standards.
• Deliver external audit engagements for Webtrust, ETSI, SOC 2 and other standards.
• Supporting the VP GRC on relevant reporting tasks, and communications with DigiCert management and executive teams.
• Contribute to the risk assessment process and advise on risk treatment plans.
• Provide input and review for relevant DigiCert internal policies and procedures. Ensure appropriate controls are designed and implemented throughout the environment to comply with security policies and standards.
• Manage relevant client audits.
• Stay informed of emerging regulatory trends and changes, advising senior management on potential impacts and necessary adjustments to the compliance program.
• Serve as a liaison with regulatory bodies and external auditors, managing communications and coordinating inspections or investigations.
• Collaborate with Legal, Finance, HR and other departments to ensure cohesive compliance strategies and responses to regulatory issues.
• Maintain strong relationships with external authorities and industry groups.
• Help foster a culture of compliance and security throughout the organization.
• Any other similar related activities as assigned.

What you will have

• Minimum bachelor’s degree in law, computer science compliance or related field.
• Minimum 10 years relevant experience in risk, compliance, legal or regulatory roles in a global company.
• Relevant certifications such as CISSP, CISA, CISM, CRISC, IIA, CIPM.
• Excellent analytical, organizational and communication skills.
• Experience with compliance and risk management software and the ability to leverage technology for efficient compliance monitoring and reporting.
• Experience with FISMA and FedRAMP ATO processes is a plus.
• Prior experience managing a team of internal auditors is a plus.
• Experience designing and testing cloud-centric controls is a plus.
• Experience with FPKI is a plus.
• Prior compliance automation experience is a plus.

Benefits

DigiCert offers a competitive benefits package for all of our full-time employees. 

DigiCert is an Equal Opportunity employer and is committed to diversity in its workforce. In compliance with applicable federal and state laws, DigiCert prohibits discrimination on the basis of race or ethnicity, religion, color, national origin, sex, age, sexual orientation, gender identity/expression, veteran’s status, status as a qualified person with a disability, or genetic information. Individuals from historically underrepresented groups, such as minorities, women, qualified person with disabilities, and protected veterans are strongly encouraged to apply.

#LI-RR1