Director, Compliance

JOB TITLE: Dir, Compliance

DEPARTMENT: R&D InfoSec B

USINESS UNIT: Corporate

REPORTS TO: GVP Info Sec

POSITION OVERVIEW

The Director, Compliance will provide leadership to Compliance team, data governance and other compliance initiatives. The role is responsible for maintaining and expanding E2open's certifications and implement data privacy controls. The Director must understand current and future risks to improve the Compliance Program and Information Security Management System (ISMS). This role will be responsible for managing and leading various audits and Compliance related initiatives.

DUTIES & RESPONSIBILITIES

• Responsible for managing Compliance functions to implement E2open global policies, standards, and controls at a global level.
• Monitors and reviews regulatory updates and issues relative to pertinent regulatory requirements (such as GDPR, PCI or SOX) and escalates findings appropriately.
• Directs communications, and security awareness programs and risk analysis with global businesses.
• Knowledge of industry trends and current and emerging risks
• Partner with teams across E2open to periodically review and update E2open policies
• Lead initiatives to collect and review documentation evidencing adherence to corporate controls in support of compliance and regulatory requirements
• Lead initiatives to conduct training on company policy and requirements
• Maintain control mappings to industry standards and best practices
• Collaborate with multiple departments and cross functional teams
• Provide counsel and support to the organization regarding corporate policy and requirement implementation
• Provide reporting and trending information of identified risks to management
• Lead improvement, standardization, and automation of existing compliance processes
• Responsible for aspects of managing a team including setting goals and objectives, managing performance, and developing associates
• Assist the Compliance team in other tasks as required

SKILLS:

• 10+ years of progressive IT experience in a combination of Risk Management, Compliance or IT roles.
• At least 5 years must be in a leadership role in Compliance or Governance team.
• Knowledge of applicable industry rules (ISO27001, GDPR, PCI, SOX, etc.), and expertise in entity controls and audit best practices.
• Risk management experience with proven ability to effectively apply risk principles to challenging business situations.
• Impeccable executive presentation and communication skills.
• Excellent influencing and problem resolution skills.
  • Familiarity with project management GSuite products, and related technologies
  • Experience documenting business processes or technical procedures
  • Security Certifications such as CISA, CRISC, ISO are encouraged

EDUCATION & PROFESSIONAL QUALIFICATIONS:

• Undergraduate degree in Business, Organizational management, MIS or Computer Science preferred

PERSONAL QUALITIES:

• Exceptional interpersonal verbal and written skills in English.
• Very high level of initiative, self-confidence, energy, and personal integrity
• Quick learner, pragmatic and ability to adapt to multiple tasks.