Senior Manager, Security Governance & Compliance
Job Overview
About Us
Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster.
Learn more at diligent.com or follow us on LinkedIn and Facebook
Position Overview:
The Senior Manager, Security Governance & Compliance defines and leads operational execution of audit and compliance strategy across multiple products and services. This person understands compliance challenges related to software and AWS cloud architecture and can ensure ongoing and efficient compliance. Reporting to the Senior Director, GRC, this person will also mentor and lead analysts in the GRC group. The role’s primary objective is to clearly communicate compliance requirements to engineers, product managers, and corporate stakeholders, and to ensure that Diligent products maintain a compliance status that earns customer trust and reflects the organization’s commitment to security.
Key Responsibilities
- Manage a team of analysts responsible for executing external audits and maintaining compliance monitoring tasks for the organization with a focus primarily on SOC 2 and BSI C5.
- Monitor and interpret changes in relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, SOC 2, PCI DSS). They ensure internal controls are implemented, tested, and maintained to meet these requirements.
- Create or revise security and compliance-related policies and control sets (e.g., Access Control, Data Privacy, Incident Response).
- Translate abstract regulations into actionable controls for technical and business teams.
- Promote a security culture through awareness and GRC training programs, ensuring all employees understand their roles in risk management and policy adherence.
- Own people management responsibilities, including goal setting, feedback, performance management, and career development.
Required Experience/Skills
- Post-secondary degree in a relevant field.
- 7-10 years of experience in information technology, or an equivalent combination of education, technical training, with proven people management experience.
- Proven track record in developing and implementing governance frameworks and compliance programs.
- Experience with compliance audits, assessments, and Privacy Impact Assessments
- Working experience with audits in AWS
- Expertise in SOC 2, BSI C5 and strong knowledge of ISO 27000 series requirements.
- Excellent communication skills and ability to engage with stakeholders at all levels.
Preferred Experience/Skills
- Security certifications e.g. Security+, SSCP, CISSP
What Diligent Offers You
- Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients
- We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few
- We have teams all over the world. We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney.
- Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding.
Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place.
Headquartered in New York, Diligent has offices in Washington D.C., London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney. To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community.
We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligent's EEO Policy and Know Your Rights. We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. If you need assistance or an accommodation due to a disability, you may contact us at [email protected].
To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.