Senior Director, GRC & Privacy - Anywhere within the US

New York, New York   |   Full Time

Chargebee is a subscription billing and revenue management platform powering some of the fastest-growing brands around the world today, including Calendly, Hopin, Pret-a-Manger, Freshworks, Okta, Study.com, and others. Thousands of SaaS and subscription-first businesses process over billions of dollars in revenue every year through the Chargebee platform.


Headquartered in San Francisco, USA, our 500+ team members work remotely throughout the world, including India, the Netherlands, Paris, Spain, Australia, and the USA.


The Director of GRC & Privacy - will be responsible for establishing the framework, articulating the strategy, and leading the development of the Organization Governance, Risk Management, and Compliance Controls ecosystem to meet Board, Senior Management, and Regulatory expectations, in conjunction with other teams.  The director is responsible for the establishment, operationalization, and continuous improvement of global Governance, Risk management, Compliance, and Privacy. As the Director, GRC, and Privacy you will provide leadership to a growing global team.  Requires a great deal of responsibility that will include, but not be limited to, the following -


About GRC & Privacy team:

The GRC and Privacy team is responsible for managing the organization's overall governance, enterprise risk management, compliance, and data privacy regulations.  The objective of the GRC and Privacy team is to enable a structured approach to align IT with business objectives, while effectively managing risk and meeting compliance & data privacy requirements.


What you will be doing: 


  • Develop and lead strategic roadmap of the GRC & privacy function.
  • Implement, review and assess the Enterprise risk framework by conducting risk assessments periodically.
  • Reduce risk and improve control effectiveness, privacy and compliance through an integrated and unified approach that reduces the ill effects of organizational silos and redundancies.
  • Assurance over the compliance of standards and regulations Chargebee needs to follow. Examples are - SOC, PCI, ISO 27001, SOX, NIST, etc including GDPR, CCPA, and other applicable data privacy laws.
  • Maintain a strong awareness of legislative changes or amendments to ensure ongoing and future compliance.
  • Build a strategic and comprehensive privacy program that defines, develops, maintains, and implements policies and processes that enable consistent, effective privacy practices.
  • Work with GTM functions, legal counsel, and other related parties to represent the organization's information privacy interests with external parties (state or local government bodies) who undertake to adopt or amend privacy legislation, regulation, or standard.
  • Conduct related ongoing compliance monitoring activities in coordination with the organization's other compliance and operational assessment functions.
  • Develop a communication strategy for verbal and written communications to the three lines of defense to raise awareness of the overall program, ensure engagement, and update on progress against the plan.
  • Improve Chargebee’s GRC and Privacy posture externally by delivering customer delights and driving Privacy as a competitive edge for Chargebee.
  • Driving the Budgets w.r.t People and technology and demonstrating the value.
  • Responsible for delivering key metrics to the leadership as part of the GRC and Privacy function.

 

Qualifications:


  • 12+ years of IS experience with 4+ years of GRC leadership experience.
  • Hands-on experience in implementing GRC programs. 
  • Thorough knowledge of strategy, governance, risk management, and compliance concepts.
  • Working knowledge of compliance frameworks (CIS, NIST, OWASP, PCI).
  • Have the mental acuity to analyze complex sets of data and requirements and present that data in a manner that's clear and concise.  
  • Experience working with COSO and COBIT frameworks and their role in Enterprise Risk Management.
  • Demonstrated ability to create and successfully execute strategic Privacy and compliance roadmap.
  • Experience securing various Cloud architectures and deployment strategies such as Software-as-a-service, Infrastructure-as-a-service (AWS), Platform as a service, etc.
  • Experience working with technology environments, including information security, encryption methods, and privacy-based solutions.
  • Knowledge and understanding of relevant legal and regulatory requirements including PCI-DSS, SOX, HIPAA, GDPR.
  • Work with 3rd party vendors and provide Product requirements for Privacy/GRC compliance.
  • Thorough documentation abilities and process adherence culture.
  • Practical experience in leading internal and external compliance audits.
  • Excellent written and verbal communication skills.




We are Globally Local

With a diverse team across four continents and customers in over 60 countries, you get to work closely with a global perspective right from your own neighborhood.


We value Curiosity

We believe the next great idea might just be around the corner. Perhaps it’s that random thought you had ten minutes ago. We believe in creating an ecosystem that fosters a desire to seek out hard questions, and then figure out answers to them.


Customer! Customer! Customer!

Everything we do is driven towards enabling our customers’ growth. This means no matter what you do, you will always be adding real value to a real business problem. It’s a lot of responsibility, but also a lot of fun.


Want to know what it means to work for a company that genuinely cares about you? Check out just a few of the benefits we give our employees:


  • Unlimited PTO
  • First Friday of every month off
  • Annual 2-week sabbatical
  • 4% 401k Match
  • We pay for your medical, dental & vision premiums (on a $0 deductible plan)



Chargebee might be the opportunity you’re looking for

  • If you’re interested in how subscription businesses can get more efficient.
  • If you’re hungry to give and receive feedback, fully understanding that challenging perspectives are the only way that you can grow.
  • If you can bring empathy to problem solving.
If this sounds interesting but you’re not sure you'll tick all the boxes, apply anyway! There’s tons of room to grow at Chargebee.

Let’s talk

apply with your résumé to get
the conversation started

Submit Your Application

You have successfully applied
  • You have errors in applying