Compliance Program Manager
HP Inc.
Job Summary
The Compliance Program Manager will be responsible for developing, implementing, and managing our established compliance programs to ensure continued adherence to ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2 standards. This role involves working closely with various departments to ensure that all compliance requirements are met and maintained.
Responsibilities
Oversee and manage existing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
Conduct regular internal and external audits to ensure ongoing compliance with relevant standards and regulations.
Act as the business lead for all compliance audits, coordinating with internal teams and external auditors.
Collaborate with internal teams to identify and mitigate compliance risks.
Develop and maintain compliance documentation, including policies, procedures, and guidelines.
Provide training and awareness programs to employees on compliance requirements and best practices.
Monitor changes in regulations and standards, and update compliance programs accordingly.
Coordinate with external auditors and regulatory bodies during compliance audits and assessments.
Prepare and present compliance reports to senior management and stakeholders.
Ensure continuous improvement of compliance programs through regular reviews and updates.
Education & Experience Recommended
Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.
Typically has 10 years of work experience, preferably in cyber & IT security, or a related field.
Proven experience in managing compliance programs for ISO 27001, ISO 27701, ISO 27017, and SOC2 Type 2.
Strong understanding of information security management systems (ISMS) and privacy information management systems (PIMS).
Extensive experience with internal and external audits, including acting as the business lead for such audits.
Experience with Cloud Software as a Service (SaaS) and print environments.
Excellent analytical, problem-solving, and communication skills.
Ability to work independently and collaboratively in a fast-paced environment.
Strong attention to detail and organizational skills
Preferred Certifications
CISSP, CISA, CISM, or equivalent is highly desirable.
Knowledge & Skills
Cybersecurity operations
Cybersecurity governance
Cybersecurity policies
Auditing
Risk management
Automation
Risk analysis
Issue tracking
Security controls
Operating systems
Working experience in Azure and/or AWS Cloud
Cross-Org Skills
Effective Communication
Results Orientation
Learning Agility
Digital Fluency
Customer Centricity
Impact & Scope
Impacts large functions and leads large, cross-division functional teams or projects.
Complexity
Provides highly innovative solutions to complex problems within established policy.
Disclaimer
This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.
The base pay range for this role is $102,500 to $157,850 annually with additional opportunities for pay in the form of bonus and/or equity (applies to US candidates only). Pay varies by work location, job-related knowledge, skills, and experience.
Benefits:
HP offers a comprehensive benefits package for this position, including:
Health insurance
Dental insurance
Vision insurance
Long term/short term disability insurance
Employee assistance program
Flexible spending account
Life insurance
Generous time off policies, including;
4-12 weeks fully paid parental leave based on tenure
11 paid holidays
Additional flexible paid vacation and sick leave (US benefits overview (https://hpbenefits.ce.alight.com/) )
The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.
Equal Opportunity Employer (EEO):
HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).