Box
Box (NYSE:BOX) is the leader in Intelligent Content Management. Our platform enables organizations to fuel collaboration, manage the entire content lifecycle, secure critical content, and transform business workflows with enterprise AI. We help companies thrive in the new AI-first era of business.
WHY BOX NEEDS YOU We are looking for a strong people manager, with deep Compliance experience, technical expertise, and information security knowledge to plan, execute and deliver on existing and new Compliance certifications. As our Sr. Compliance manager, you will play a key role in building scalable and efficient processes related to corrective actions, product compliance, and the overall compliance framework.
You will work with all functions of this fast‑paced, rapidly changing business, and directly with key stakeholders to drive continuous improvement, communication and education with Box's internal and external customers. The right person will be excellent at communicating vertically and horizontally across the company and will be comfortable explaining Box's compliance posture to both internal and external customers, working cross‑functionally and providing technical and creative guidance to technical teams.
WHAT YOU'LL DO
Lead team responsible for successfully delivering Compliance programs such as PCI, ISO 27000 series, SOC, etc.
Monitor and identify compliance issues and follow‑up.
Provide compliance guidance on new product features, deviations, and changes in the infrastructure.
Support and drive regulatory and customer audits.
Drive improvements in existing processes and develop new, innovative, and efficient solutions.
Communicate gaps to management and coordinate cross‑functional team meetings to remediate and close control gaps.
Build relationships with internal and external stakeholders.
Accurately and effectively communicate our compliance position and programs to auditors, customers and internal stakeholders.
WHO YOU ARE
BS degree in Business or Management Information Systems or related field OR equivalent work experience.
6+ years experience in an equivalent technology risk and compliance related role.
2+ years of direct people leadership experience, with passion for developing and nurturing talent.
QSA, CISA, CIA, CISSP or other related certifications a plus.
Experience working with and implementing GRC tools and processes.
Familiar with cloud computing (GCP and AWS a plus) and the acronyms that come with it – SaaS, IaaS and PaaS.
Extensive knowledge of 2 or more of the following compliance frameworks: PCI, SOC, ISO 27001, NIST 800‑53.
Excellent written, verbal communication and presentation skills.
Big 4 experience or Management Consulting experience preferred.
Willingness to wear different hats and work on areas where needed.
Amazing organizational skills with a drive to succeed in a fast‑paced environment.
Ability to hustle, get stuff done, and has strong integrity.
EQUAL OPPORTUNITY We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation. Box strives to respect the dignity and independence of people with disabilities and is committed to giving them the same opportunity to succeed as all other employees.
Box makes reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please complete the form. Reasonable accommodations may include scheduling adjustments, document dictation and beyond.
Notice to applicants in Los Angeles and San Francisco: Box, Inc and its related branches will consider for employment, qualified applicants with criminal histories in a manner consistent with the local Fair Chance Ordinance.
Benefits Box is committed to fair and equitable compensation practices. Actual base salary (or OTE if commissionable role) is dependent upon factors such as: knowledge, skill level, experience, and work location. This role is also eligible for equity and benefits. For more information on benefits and additional Box Benefits + Perks, see our healthcare benefits.
Compensation Transparency In accordance with OFCCP compliance, this is the Pay Transparency Provision.
Diversity & Inclusion Here at Box our goal is to fully leverage and engage the unique talents/capabilities of diverse teams who feel like they belong. We provide a safe space to contribute your unique skills, ideas, and insights. A welcoming space is provided to learn, try new things, grow your career, test your thinking, and evolve. Our goal is to build diverse teams with broad representation that matches our customers and the world at large.
#J-18808-Ljbffr
WHY BOX NEEDS YOU We are looking for a strong people manager, with deep Compliance experience, technical expertise, and information security knowledge to plan, execute and deliver on existing and new Compliance certifications. As our Sr. Compliance manager, you will play a key role in building scalable and efficient processes related to corrective actions, product compliance, and the overall compliance framework.
You will work with all functions of this fast‑paced, rapidly changing business, and directly with key stakeholders to drive continuous improvement, communication and education with Box's internal and external customers. The right person will be excellent at communicating vertically and horizontally across the company and will be comfortable explaining Box's compliance posture to both internal and external customers, working cross‑functionally and providing technical and creative guidance to technical teams.
WHAT YOU'LL DO
Lead team responsible for successfully delivering Compliance programs such as PCI, ISO 27000 series, SOC, etc.
Monitor and identify compliance issues and follow‑up.
Provide compliance guidance on new product features, deviations, and changes in the infrastructure.
Support and drive regulatory and customer audits.
Drive improvements in existing processes and develop new, innovative, and efficient solutions.
Communicate gaps to management and coordinate cross‑functional team meetings to remediate and close control gaps.
Build relationships with internal and external stakeholders.
Accurately and effectively communicate our compliance position and programs to auditors, customers and internal stakeholders.
WHO YOU ARE
BS degree in Business or Management Information Systems or related field OR equivalent work experience.
6+ years experience in an equivalent technology risk and compliance related role.
2+ years of direct people leadership experience, with passion for developing and nurturing talent.
QSA, CISA, CIA, CISSP or other related certifications a plus.
Experience working with and implementing GRC tools and processes.
Familiar with cloud computing (GCP and AWS a plus) and the acronyms that come with it – SaaS, IaaS and PaaS.
Extensive knowledge of 2 or more of the following compliance frameworks: PCI, SOC, ISO 27001, NIST 800‑53.
Excellent written, verbal communication and presentation skills.
Big 4 experience or Management Consulting experience preferred.
Willingness to wear different hats and work on areas where needed.
Amazing organizational skills with a drive to succeed in a fast‑paced environment.
Ability to hustle, get stuff done, and has strong integrity.
EQUAL OPPORTUNITY We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, and any other protected ground of discrimination under applicable human rights legislation. Box strives to respect the dignity and independence of people with disabilities and is committed to giving them the same opportunity to succeed as all other employees.
Box makes reasonable accommodations for applicants with disabilities. If a reasonable accommodation is needed to participate in the job application or interview process, please complete the form. Reasonable accommodations may include scheduling adjustments, document dictation and beyond.
Notice to applicants in Los Angeles and San Francisco: Box, Inc and its related branches will consider for employment, qualified applicants with criminal histories in a manner consistent with the local Fair Chance Ordinance.
Benefits Box is committed to fair and equitable compensation practices. Actual base salary (or OTE if commissionable role) is dependent upon factors such as: knowledge, skill level, experience, and work location. This role is also eligible for equity and benefits. For more information on benefits and additional Box Benefits + Perks, see our healthcare benefits.
Compensation Transparency In accordance with OFCCP compliance, this is the Pay Transparency Provision.
Diversity & Inclusion Here at Box our goal is to fully leverage and engage the unique talents/capabilities of diverse teams who feel like they belong. We provide a safe space to contribute your unique skills, ideas, and insights. A welcoming space is provided to learn, try new things, grow your career, test your thinking, and evolve. Our goal is to build diverse teams with broad representation that matches our customers and the world at large.
#J-18808-Ljbffr