compliance officer Remote
Job description
Company Description
Dropbox is a special place where we are all seeking to fulfill our mission to design a more enlightened way of working. We’re looking for innovative talent to join us on our journey. The words shared by our founders at the start of Dropbox still ring true today.
Wouldn’t it be great if our working environment—and the tools we use—were designed with people’s actual needs in mind? Imagine if every minute at work were well spent—if we could focus and spend our time on the things that matter. This is possible, and Dropbox is connecting the dots.
The nearly 3,000 Dropboxers around the world have helped make Dropbox a living workspace - the place where people come together and their ideas come to life. Our 700+ million global users have been some of our best salespeople, and they have helped us acquire customers with incredible efficiency. As a result, we reached a billion dollar revenue run rate faster than any software-as-a-service company in history.
Dropbox is making the dream of a fulfilling and seamless work life a reality. We hope you’ll join us on the journey.
Team Description
Our Legal, Policy, Trust & Privacy teams help keep users and their stuff safe, protect Dropbox, counsel Dropboxers on challenging problems, and are always synced with the Dropbox teams they work with. We deal with novel issues every day while standing up for users and helping the company and product grow.
Role Description
Protecting Dropbox and our users is critical to being worthy of trust. As a Governance, Risk & Compliance Manager at Dropbox, you will join a growing team to design, implement, and coordinate programs to promote user trust and manage risks to their data. You will work with teams across the organization, from Engineering, Product, & Infrastructure, to Sales to Customer Experience, in order to manage risks to Dropbox and users alike. You will work in depth with other parts of the business to ensure Dropbox meets our security, privacy, and regulatory commitments.
If you are passionate about protecting Dropbox and our users, are looking for an opportunity to stretch and grow yourself in a dynamic team, and thrive in an environment where you can constantly learn, then this role is for you.
Responsibilities
Promote and foster a culture of trust at Dropbox
Design, implement, maintain, and improve programs to address key company risks and prepare internal teams for independent assessments against a wide variety of regulatory and compliance frameworks (ISO 27001, ISO 27017, ISO 27018, ISO 22301, ISO 27701, HIPAA)
Solve a broad range of large, complex, cross-functional challenges such as SOC compliance, PCI compliance, ISMAP compliance, and/or SOX compliance
Improve controls for internal systems, processes, and policies
Facilitate ongoing risk and compliance initiatives and monitor control effectiveness
Collaborate with internal teams and external auditors throughout compliance assessments
Drive automation efforts across the Compliance function via SNOW tool
Identify opportunities impacting the Compliance function and establish the strategy and cross-functional alignment to achieve these objectives
Conduct gap assessments to identify areas of non-compliance or areas for improvement, and develop action plans to address these gaps
Provide guidance to management on the impact of new laws and regulations and recommend changes in business practices where necessary
Requirements
4+ years of experience building or maintaining programs to mitigate risks around security, confidentiality, integrity, availability, and privacy
Experience facilitating or being the subject of SOC, ISO, HIPAA and/or FedRAMP audits at a fast-paced technology company, public accounting firm, or similar environment
Experience partnering with Engineering, Product, & Development teams to define compliance needs in a multi-product environment
Strong familiarity with a broad range of technical concepts relevant to cloud computing environments: logical access control, agile development process, secure coding principles, security architecture, information security, network security, and privacy
Experience with implementing compliance programs for emerging new solutions
Strong understanding of cloud-based technologies and their implications for governance, risk, and compliance
Strong project management and organizational skills - must drive your own projects to completion, while also fostering collaboration and bringing teams together to achieve common objectives
Great people skills and ability to work well in fast paced team environment with a wide range of technical and non-technical teams
Excellent writing, communication, and organizational skills - strong attention to detail
Passion to aim higher and develop new skills
CISA, CISSP, CCSK, CIPP, or other professional certifications/associations a plus
Benefits
Dropbox is committed to investing in the holistic health and wellbeing of all Dropboxers and their families. Our benefits and perks programs include, but are not limited to:
Competitive medical, dental and vision coverage*
Retirement Savings through a defined contribution pension or savings plan**
Dropbox provides a Flexible PTO Policy in addition to your statutory holidays allowing you to unplug, unwind, and refresh
Dropbox also provides exclusive additional paid time off for all FTE employees across the Globe, in addition to any relevant statutory holidays
Protection Plans including Life and Disability Insurance*
A Perks Allowance to be used on what matters most to you, whether that’s wellness, learning and development, food & groceries, and much more
Parental benefits including; Parental Leave, Fertility Benefits, Adoptions and Surrogacy support, and Lactation support
Additional benefits details are available upon request.
- Where group plans are not available, allowances are provided
Dropbox is an equal opportunity employer. We are a welcoming place for everyone, and we do our best to make sure all people feel supported and connected at work. A big part of that effort is our support for members and allies of internal groups like Asians at Dropbox, BlackDropboxers, Latinx, Pridebox (LGBTQ), Vets at Dropbox, Women at Dropbox, ATX Diversity (based in Austin, Texas) and the Dropbox Empowerment Network (based in Dublin, Ireland).
About Dropbox
CEO: Drew Houston
Revenue: Unknown / Non-Applicable
Size: 1001 to 5000 Employees
Type: Company - Private
Website: https://www.dropbox.com
Year Founded: 2007
