Compensation Partner, R&D
Gitlab
Full-time
Remote
What you’ll do
Develop, implement, and manage GRC strategies and processes to support compliance with various regulatory and industry standards, including FedRAMP, SOC 2, ISO 27001, and others.
Work closely with highly regulated customers to understand their unique compliance requirements and provide tailored solutions to ensure adherence to relevant frameworks and certifications.
Lead and manage security assessments, audits, and certification processes, ensuring timely and successful completion.
Collaborate with cross-functional teams, including IT, security, and legal, to integrate GRC requirements into the organization's operations and technology stack.
Develop and maintain comprehensive documentation, including policies, procedures, and controls, to support compliance initiatives.
Utilize scripting/coding skills to automate GRC processes and implement compliance-as-code or policy-as-code solutions.
Monitor and analyze regulatory changes and industry trends to ensure continuous improvement of the GRC program and maintain up-to-date compliance.
Provide training and guidance to internal teams and customers on GRC-related topics, fostering a culture of compliance and security awareness.
Act as a subject matter expert on GRC issues, providing strategic advice and support to senior management and stakeholders.
Develop, implement, and manage GRC strategies and processes to support compliance with various regulatory and industry standards, including FedRAMP, SOC 2, ISO 27001, and others.
Work closely with highly regulated customers to understand their unique compliance requirements and provide tailored solutions to ensure adherence to relevant frameworks and certifications.
Lead and manage security assessments, audits, and certification processes, ensuring timely and successful completion.
Collaborate with cross-functional teams, including IT, security, and legal, to integrate GRC requirements into the organization's operations and technology stack.
Develop and maintain comprehensive documentation, including policies, procedures, and controls, to support compliance initiatives.
Utilize scripting/coding skills to automate GRC processes and implement compliance-as-code or policy-as-code solutions.
Monitor and analyze regulatory changes and industry trends to ensure continuous improvement of the GRC program and maintain up-to-date compliance.
Provide training and guidance to internal teams and customers on GRC-related topics, fostering a culture of compliance and security awareness.
Act as a subject matter expert on GRC issues, providing strategic advice and support to senior management and stakeholders.