Staff Compliance Engineer

Join our team at ASAPP, where we're developing transformative Vertical AI designed to improve customer experience. Recognized by Forbes AI 50, ASAPP designs generative AI solutions that transform the customer engagement practices of Fortune 500 companies. With our automation and simplified work processes, we empower people to reach their full potential and create exceptional experiences for everyone involved. Work with our team of talented researchers, engineers, scientists, and specialists to help solve some of the biggest and most complex problems the world is facing.

Building trust with our customers is part of our everyday mission at ASAPP. Compliance is front and center of that approach. We accomplish this by starting early, shifting left, and designing robust and fit compliance programs to build trustworthy products. Our objective is to make it easy to rely on our compliance and certifications, security features, and assurance so that the constantly evolving regulatory landscape is front and center for our customers - and their customers - that benefit from the ASAPP products.

What you'll need

• At least eight years of cumulative experience in compliance, risk management, technology audit, data protection, technology, or software development, with a minimum of five years in compliance or certification roles
• Proven experience with technology audits, control design or operationalization and scaling
• Ability to exercise good judgment around the balance of compliance and business needs

What you'll do

• Support regulated customers in maintaining elevated control requirements for regulatory compliance & controls
• Manage certification audits (SOC 2 Type II and PCI) end to end, executing self-assessments, and leading new certification efforts
• Maintain and monitor active security for a few hundred controls in operation, ensuring proper operation and maintaining artifacts
• Execute internal risk assessments and maintain a risk register
• Manage vendor and partner risk assessment programs
• Maintain security policies and documentation
• Enable compliance automation and manage the technology for compliance posture, artifact management, and scaling automation
• Work closely with internal teams to standardize and scale compliance processes and controls across the company
• Provide technical interpretation of framework requirements to key stakeholders for controls implementation

What we'd like to see

• CISA, CISSP certifications preferred
• Working experience in AWS security controls from a compliance perspective
• Working experience in evaluating 3rd party vendor security
• Experience working with development/engineering/architecture/technology teams to clearly communicate privacy expectations with engineering teams and contribute beyond the interpretation of privacy laws and regulations
• Experience coordinating with Legal to refine regulatory requirements, contractual obligations, and identify operational gaps to manage risk with regulatory compliance and contractual compliance
• Strong verbal and written communication skills are essential for effective customer interaction

ASAPP is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, disability, age, or veteran status. If you have a disability and need assistance with our employment application process, please email us at [email protected] to obtain assistance. #LI-VR1 #LI-Remote