Compliance Manager

Overview:

We are seeking a dedicated and experienced Compliance Manager to join our team at a leading payment software business. The ideal candidate will be responsible for overseeing and managing various compliance functions within the organization, focusing on audit projects such as SOC 1 and SOC 2 audits, ISO certifications, vendor management, and ensuring compliance with legal, regulatory, and industry standards. This role requires a strong understanding of the payments industry, regulatory frameworks, and best practices to ensure that all company operations adhere to the necessary compliance requirements.

Key Responsibilities:

Audit & Certification Management:

• Lead and manage internal and external audit projects, including SOC 1 and SOC 2 audits, ensuring the company meets all compliance requirements.
• Coordinate with external auditors and internal stakeholders to ensure the successful completion of audits.
• Manage and oversee ISO certification processes, ensuring the company meets all relevant ISO standards.
• Maintain and update documentation related to audit and certification processes.
• Develop and implement remediation plans to address any findings or deficiencies from audit processes.
• Vendor Management:
• Oversee and manage the organization’s vendor management program, ensuring all third-party vendors comply with applicable legal, regulatory, and industry standards.
• Conduct regular risk assessments on vendor relationships to ensure the adequacy of compliance controls.
• Collaborate with legal, and other departments to ensure that contracts and agreements include appropriate compliance terms and conditions.
• Monitor and track vendor performance to ensure adherence to compliance requirements.

Regulatory Compliance:
Monitor and stay current with applicable local, regional, and global regulations related to payment software, including but not limited to data protection (GDPR, CCPA), financial regulations (e.g., PCI DSS), and anti-money laundering (AML).
Advise internal teams on compliance matters related to business operations and strategic initiatives.
Implement and enforce policies and procedures to ensure full compliance with applicable laws and regulations.
Develop and deliver training programs to internal teams to promote awareness of compliance obligations and responsibilities.

Industry Best Practices:
Stay informed of emerging trends and best practices within the payments industry and related regulatory frameworks.
Establish and maintain relationships with industry groups, regulatory bodies, and legal advisors to ensure the company’s compliance with industry standards.
Assist in the development and improvement of compliance-related processes and controls across the organization.
Compliance Reporting:

• Regularly report on the status of compliance initiatives, audit findings, and risk mitigation efforts to senior leadership.
• Prepare and present detailed compliance reports for internal stakeholders, regulatory bodies, and external auditors as required.
• Ensure timely reporting of compliance metrics, audit results, and vendor management outcomes.
• Cross-functional Collaboration:
• Collaborate with cross-functional teams, including IT, legal, finance, and operations, to ensure that compliance controls are integrated into business operations.
• Support the development of internal policies and procedures that reflect regulatory and audit requirements.
• Provide guidance and support to business units to ensure adherence to compliance requirements.
• Skills & Qualifications:

Experience:

Strong knowledge and experience with SOC 1 and SOC 2 audits, ISO certifications, and vendor management in a regulated environment.
In-depth understanding of legal and regulatory frameworks governing the payment software industry, including data privacy laws (GDPR, CCPA), PCI DSS, and AML.
Proven experience managing cross-functional teams and working with senior leadership on compliance matters.
Education:

Bachelor’s degree in Business, Law, Information Security, or a related field. A Master’s degree or certifications such as Certified Information Systems Auditor (CISA), Certified Compliance and Ethics Professional (CCEP), or ISO certifications are a plus.

Skills & Competencies:

Strong analytical and problem-solving skills.
Excellent communication skills, with the ability to present complex compliance issues in an understandable and actionable way.
Attention to detail with a strong ability to assess risk and manage multiple compliance projects simultaneously.
Ability to work independently and as part of a team, with a proactive approach to compliance and audit management.
Experience with compliance management tools and software.