Senior Director, Risk Compliance
3 weeks ago
Every day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced "sneak") comes in. Snyk is a developer security platform that makes it easy for development teams to find, prioritize, and fix security vulnerabilities in code, dependencies, containers, and cloud infrastructure — and do it all right from the start. Snyk is on a mission to make the world a more secure place by empowering developers to develop fast and stay secure.
Joining Snyk means embracing our core values: One Team, Care Deeply, Customer Centric, and Forward Thinking. As a member of our team, you'll have the opportunity to thrive in a dynamic environment where fostering collaboration, leading with empathy, driving business impact, and inspiring trust are at the heart of everything we do.
Our Opportunity
Snyk is seeking an experienced hands on GRC leader to strategize, build, operate, and mature our global GRC organization and lead cross-functional partnerships in maintaining commitments to Snyk customers, partners and employees.
You will lead an exceptional team that will deliver fit-for-purpose and integrated risk and compliance functions that enable risk-based prioritization, executive and board level reporting, and support implementation. You will be a champion of data privacy and security and build those requirements into product offerings & services as well as day-to-day business processes. You will work directly with the rest of the Snyk team at large to mature and maintain a sustainable GRC program for the enterprise.
You'll Spend Your Time:
- Leading, motivating and developing a high performing security/privacy GRC team.
- Partnering with cross-functional Snyk leaders to mature and maintain a sustainable GRC program for the enterprise.
- Providing thought leadership on security-related regulatory and statutory matters that may impact the company.
- Providing vision and hands-on leadership for developing and supporting initiatives in the areas of security and privacy policies, standards, training, external audits and gap assessments, continuous control monitoring, customer assurance and risk assessments.
- Supporting procurement and commercial teams with respect to information security aspects of contract and relationship discussions with third parties.
- Designing, maintaining and communicating security/privacy assurance and compliance strategies and plans a specific focus on expansion of the security certification portfolio that are designed to keep Snyk abreast of regulatory and commercially driven framework requirements in markets Snyk expands to.
- Executing periodic organizational and asset level risk and impact assessments to identify security & privacy risks in a manner that drives Snyk leaders to invest in risk minimization efforts.
- Driving operational efficiencies through process and program improvements and implementation of automation toolsets to gain efficiencies.
- Providing advisory services to other teams on maintaining compliance with privacy and security policies and standards through the course of their business operations.
- Collaborating with legal on the development and implementation of information security and data protection policies and processes.
- Collaborating with security teams on matters relating to data assurance, data protection, threat defense, risk management, and regulatory compliance.
- Working closely with legal and product teams globally to review products, features, new applications and initiatives to provide legal risk mitigation strategies to ensure legal compliance for products from an information security perspective.
- Coordinating with legal, information security, trust & safety, privacy & data protection, and other cross-functional colleagues on all matters related to information security and incident response, including communication, policy development, and enforcement aspects.
What You'll Need:
- 10+ years of experience leading all aspects of a Security/Privacy GRC program, ideally with some experience in a SaaS or Tech organization.
- Proven experience with and including driving certifications for multiple domestic and international security & privacy frameworks/standards such as ISO 27001, ISO 27701, SOC2, GDPR, IRAP, FedRAMP/StateRAMP, HIPAA, PCI DSS, CMMC.
- Proven ability to develop and retain high performing GRC professionals.
- Effective written and verbal communication skills, especially translating between business and technical terminology.
- Outstanding cross-functional partnership skills with a confirmed ability to lead multiple stakeholders with conflicting priorities in a fast and constantly changing environment.
- Certifications such as CRISC, CISA, CISSP or CISM are considered preferentially.
#LI-TF1
We care deeply about the warm, inclusive environment we've created and we value diversity – we welcome applications from those typically underrepresented in tech. If you like the sound of this role but are not totally sure whether you're the right person, do apply anyway
About Snyk
Snyk is committed to creating an inclusive and engaging environment where our employees can thrive as we rally behind our common mission to make the digital world a safer place. From Snyk employee resource groups, to global benefits that help our employees prioritize their health, wellness, financial security, and a work/life blend, we aim to support our employees along their entire journeys here at Snyk.
Benefits & ProgramsPrioritize health, wellness, financial security, and life balance with programs tailored to your location and role.
- Flexible working hours, work-from home allowances, in-office perks, and time off for learning and self development
- Generous vacation and wellness time off, country-specific holidays, and 100% paid parental leave for all caregivers
- Health benefits, employee assistance plans, and annual wellness allowance
- Country-specific life insurance, disability benefits, and retirement/pension programs, plus mobile phone and education allowances
-
Director of Compliance Risk Management
4 weeks ago
Boston, United States Northeast Bank Full time**Northeast Bank is a full-service community bank and a national commercial real estate lender with offices in Maine, Massachusetts, New York, and California. We are looking for motivated and talented individuals who want to make an impact in a growing company that cares about its employees, customers, and the communities it serves. Northeast Bank provides...
-
Director Compliance
1 week ago
Boston, United States Santander Full timeDirector Compliance - Reporting and Governance Country: United States of America Director Compliance, Reporting & Governance is responsible for regulatory Compliance risk management and reporting across all One Compliance. They will serve as the principal liaison between Compliance and the regulators / audit. The Director advises Compliance Sr. Leadership on...
-
Director of Risk Management
2 weeks ago
Boston, United States Virtus Healthcare Staffing, LLC Full timeTrusted Staffe Seeks Director of Risk Management for Level I Trauma Center Trusted Staffe is partnering with a Level I trauma center to find a qualified and experienced Director of Risk Management. This is an exceptional opportunity for a leader in patient safety to oversee all aspects of risk management within a fast-paced and dynamic healthcare...
-
Senior Director, Risk Compliance
2 weeks ago
Boston, United States Snyk Limited Full timeEvery day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced "sneak") comes in. Snyk is a developer security platform that makes it easy for development...
-
Senior Director, Risk Compliance
2 days ago
Boston, United States Snyk Limited Full timeEvery day, the world gets more digital thanks to tens of millions of developers building the future faster than ever. But with exponential growth comes exponential risk, as outnumbered security teams struggle to secure mountains of code. This is where Snyk (pronounced "sneak") comes in. Snyk is a developer security platform that makes it easy for development...
-
Director of Risk Management
1 week ago
Boston, United States Scott & Crosby Staffing, Inc. Full timeJob Description Position: Director of Risk Management Department: Risk Management Schedule: Full Time The Director of Risk Management oversees the operation of the Risk Management and Patient Safety programs and provides guidance to clinical staff. The Director will develop and maintain systems to detect, monitor, prevent, organize, measure investigate,...
-
Senior Associate, Compliance
4 weeks ago
Boston, United States Hercules Technology Growth Capital Full timePosition Summary. The Legal and Compliance team seeks a full-time Senior Associate to report to the Chief Compliance Officer ("CCO") and support the Company's regulatory compliance reporting, testing and oversight functions. Position Overview. This position will work closely with the CCO, Deputy Compliance Officer and outside compliance consultants to...
-
Senior Associate, Compliance
1 day ago
Boston, United States Hercules Technology Growth Capital Full timePosition Summary. The Legal and Compliance team seeks a full-time Senior Associate to report to the Chief Compliance Officer ("CCO") and support the Company's regulatory compliance reporting, testing and oversight functions. Position Overview. This position will work closely with the CCO, Deputy Compliance Officer and outside compliance consultants to...
-
Director of Risk Management
2 weeks ago
Boston, United States Boston Medical Center Full timePOSITION SUMMARY: The Director of Risk Management oversees the operation of the Boston Medical Center's (BMC) Risk Management and Patient Safety programs and provides guidance to clinical staff. The Director will develop and maintain systems within BMC to detect, monitor, prevent, organize, measure investigate, report and manage patient adverse events,...
-
Senior Director, Quality Risk Management
7 days ago
Boston, MA, United States Massachusetts Bay Transportation Authority Full timeThe Integrated Transit Program is a holistic program that aligns Blue/Green, Red/Mattapan, and Orange Line Transit Programs to work together to see strategic capital investments improve the quality of service for the MBTA’s rapid Transit ridership and neighboring communities, with the recognition that transformative methods drive transformative outcomes. ...
-
Risk Manager
2 weeks ago
Boston, United States Medasource Full timePosition: Risk Manager Location: Boston, MA - hybrid (onsite ~once per month) Duration: 6-Month contract The information below covers the role requirements, expected candidate experience, and accompanying qualifications. Job Description: The Risk Manager is responsible for coordinating all aspects of the risk management program under the direction of the...
-
Risk Manager
3 weeks ago
Boston, United States Medasource Full timePosition: Risk ManagerLocation: Boston, MA - hybrid (onsite ~once per month)Duration: 6-Month contractJob Description:The Risk Manager is responsible for coordinating all aspects of the risk management program under the direction of the Senior Manager Clinical Risk and Patient Safety, including the identification, evaluation and treatment of risk including...
-
Risk Manager
4 weeks ago
Boston, United States Medasource Full timePosition: Risk Manager Location: Boston, MA - hybrid (onsite ~once per month) Duration: 6-Month contract Job Description: The Risk Manager is responsible for coordinating all aspects of the risk management program under the direction of the Senior Manager Clinical Risk and Patient Safety, including the identification, evaluation and treatment of risk...
-
Risk Manager
1 month ago
Boston, United States Medasource Full timePosition: Risk ManagerLocation: Boston, MA - hybrid (onsite ~once per month)Duration: 6-Month contractJob Description:The Risk Manager is responsible for coordinating all aspects of the risk management program under the direction of the Senior Manager Clinical Risk and Patient Safety, including the identification, evaluation and treatment of risk including...
-
Senior Risk Manager
2 months ago
Boston, United States Boston Consulting Group Full timeWHAT YOU'LL DOThe Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and Partner (MDP), and all employees bear the responsibility for...
-
Senior Risk Manager
1 month ago
Boston, United States Boston Consulting Group Full timeWHAT YOU'LL DO The Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and Partner (MDP), and all employees bear the responsibility for...
-
Senior Risk Manager
13 hours ago
Boston, United States Boston Consulting Group Full timeWHAT YOU'LL DOThe Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and Partner (MDP), and all employees bear the responsibility for...
-
Senior Risk Manager
2 days ago
Boston, United States Boston Consulting Group Full timeWHAT YOU'LL DO The Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and Partner (MDP), and all employees bear the responsibility for...
-
Senior Risk Manager
1 month ago
Boston, United States The Boston Consulting Group Inc Full timeThe Enterprise Risk Management (ERM) function is dedicated to developing and implementing strategy for identifying and managing significant risk exposures at BCG. The function aligns itself with the internal staff at BCG where each office, internal function, Managing Director and Partner (MDP), and all employees bear the responsibility for managing risk at...
-
Senior Compliance Analyst
1 week ago
Boston, United States Allspring Full timeElevate Your Career Work where your ideas have impact COMPANY Allspring Global Investments is a leading independent asset management firm that offers a broad range of investment products and solutions designed to help meet clients' goals. At Allspring, our vision is to inspire a new era of investing that pursues both financial returns and positive outcomes....
