Manager, Compliance Operations

Who We Are

Solera is a global leader in data and software services that strives to transform every touchpoint of the vehicle lifecycle into a connected digital experience. In addition, we provide products and services to protect life’s other most important assets: our homes and digital identities. Today, Solera processes over 300 million digital transactions annually for approximately 235,000 partners and customers in more than 90 countries. Our 6,500 team members foster an uncommon, innovative culture and are dedicated to successfully bringing the future to bear today through cognitive answers, insights, algorithms and automation. For more information, please visit solera.com.

 

The Role

eDriving is seeking a Manager, Compliance Operations to oversee solutions, policies, procedures, and standards related to the company's global suite of clients and their data security and privacy. This role would work across teams (product, customer success, engineering, etc.) to meet client expectations around privacy, data retention, and other compliance best practices. The Manager, Compliance Operations would also serve as a project manager for tasks and requirements related to eDriving's ISO 27001 audit program, serving alongside an existing ISO team. The ideal candidate would have strong research and documentation skills, keeping up with daily changes in global privacy requirements and best practices.

 

What You’ll Do

·Assume a lead role in compliance and GDPR/CCPA regulatory requirement efforts.  ·Develop solutions, policies, standards and procedures that further the goals of the business while ensuring the protection of its client information. ·Manage/oversee implementation of data privacy compliance processes, risk management and control implementation efforts, and execution of privacy maturity efforts. ·Partner with Client Implementation and Support Teams (either globally or in-country) to address Organization, Worker’s Council privacy concerns and needs to ensure smooth introduction of eDriving Products and Services. ·Collaborate within eDriving’s ISO 27001 audit programme and other required audit processes in conjunction with existing ISO team.·Partner with Corporate privacy, security & legal teams to ensure continued business  compliance.·Support sales and legal teams in customer negotiations related to privacy and security Terms & Conditions·Perform regular audits of current processes and procedures to mitigate breaches and ensure best practices are working effectively. ·Ensure eDriving stays up to date with global Privacy requirements and best practice, e.g GDPR, CCPA and stay in touch with Information Commissioner expectations in all countries in which eDriving operates – 100+ as of April 2025. ·Liaise with Product, Engineering, and Customer Success Teams to ensure Privacy expectations of customers and their employees are met. ·Build, update and promote all internal teams’ training programs related to proper handling of PII. ·Support data breach response planning and playbook development; ensuring all incidents and vulnerabilities are escalated and resolved in a timely manner. ·Manage supplier/third party risk management, including, but not limited to, supplier risk assessments, contractual review, and/or risk communication to stakeholders. ·May perform other duties as assigned or as they become apparent, necessary, or helpful. This list is intended to be fluid and may not contain all activities, duties or responsibilities that are required of an eDriving team member.

What You’ll Bring

·Relevant Bachelor's degree from accredited university in Information Security, Business Management, or related field. ·5 years of experience in data privacy ·Experience working with security frameworks in a leadership role. ·Experience in developing information security policies, standards and guidelines. ·Experience designing and conducting information security audits to ensure compliance. ·Experience developing and updating business continuity and disaster recovery protocols.·Experience managing compliance audit process – e.g., ISO 27001 ·Ability to analyze and assess data privacy control capabilities and provide remediation recommendations·Strong understanding of global/enterprise risk management frameworks and its alignment with business strategy. ·Demonstrated knowledge of security architecture and enabling technology across broader enterprise IT frameworks. ·Ability to analyze and assess data privacy control capabilities and provide remediation recommendations·Strong understanding of global/enterprise risk management frameworks and its alignment with business strategy. ·Demonstrated knowledge of security architecture and enabling technology across broader enterprise IT frameworks.