CrawlJobs Logo

Customer Trust & Security Compliance Program Manager

Vanilla Technologies

Location Icon

Location:
United States

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

135000.00 - 150000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

We're looking for a Customer Trust & Security Compliance Program Manager to own our customer trust, security compliance, and assurance programs. As our first hire in this role, you'll build the operational backbone that lets us ship reliably while maintaining the trust of customers who depend on us with their most sensitive financial and estate planning data. You’ll own our customer trust program, assist with coordination of our SOC 2 program and audits, coordinate customer security diligence responses, and enable our enterprise sales motion through customer-facing security conversations and documentation. You’ll run point on customer DDQ and RFP responses, establishing scalable processes that enable fast, accurate, and consistent turnarounds. This means spending your time running SOC 2 audit cycles, building and scaling trust and compliance processes, responding to customer security questionnaires, and translating between engineering teams, auditors, customers, and leadership. You’ll work closely with the CTO, Chief Legal Officer, Security Engineer, and Revenue teams to make compliance and customer trust strategic advantages rather than overhead. This role is ideal for someone who thrives at the intersection of technical program management and security compliance, enjoys building foundational programs, and wants high-impact visibility at a Series B company where customer trust is a competitive differentiator.

Job Responsibility:

  • Lead customer due diligence questionnaire (DDQ) and RFP response process and third-party risk management process
  • track and manage high volume of DDQ and RFP requests
  • Coordinate and collaborate with internal teams to meet tight deadlines
  • Handle a high volume of requests and interactions in a fast-paced environment
  • Support enterprise sales with technical customer security discussions
  • Lead SOC 2 Type II audit preparation, evidence collection, and remediation
  • Conduct third party vendor security assessments, collaborate on third party risk management processes
  • Implement and manage third party tool and new processes to create efficiencies
  • Develop the security narrative and conduct security reviews for new product functionality to enable GTM
  • Review and negotiate security and compliance language in customer contracts in collaboration with Legal team
  • Build and manage Trust Center integrations and public-facing security documentation in collaboration with Legal team
  • Build customer-facing compliance artifacts (security whitepapers, certifications)

Requirements:

  • Minimum of 5 years in a technical and/or security role with customer facing experience
  • Minimum of 3 years experience in program management, customer trust, or DDQ/RFP management within the tech industry with highly regulated customers
  • Proven track record in driving security processes and operational plans
  • Requires strong attention to detail, organizational skills, good judgement, and the ability to prioritize tasks, manage timelines, and meet tight deadlines
  • Strong contract review and negotiation skills related to security and compliance
  • Knowledge of security risks, vulnerabilities, and threat management
  • Background in supporting customer audits and engagements

Nice to have:

  • Experience in fintech, healthtech, or regulated industries
  • Prior experience at Series B-D companies scaling security compliance programs
  • Demonstrable experience implementing tools to drive and streamline DDQ processes
What we offer:
  • Flexible paid time off policy and 10 company-wide paid holidays
  • Parental leave, 4 weeks for all full-time employees and up to 12 weeks for birthing parents
  • Medical, dental, and vision benefits coverage for employees and their families
  • 401K eligibility after one month of employment
  • Free estate planning documents
  • Budget for learning & development and home office setup
  • Paid parking or transit for hybrid and in office employees

Additional Information:

Job Posted:
February 20, 2026

Employment Type:
Fulltime
Work Type:
Remote work
Icon
Vanilla Technologies - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Customer Trust & Security Compliance Program Manager

Principal Technical Program Manager - Trust

We are seeking a well-rounded Technical Program Manager for our Trust TPM team i...
Location
Location
India
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Over 8 years of experience in software, cloud infrastructure, security or compliance, preferably in a similar scale enterprise
  • Recent and relevant experience as a Principal Technical Product Manager or in similar roles leading software teams, with a proven track record of delivering projects on time, within scope, and meeting quality goals in an Agile/Lean environment
  • Experience in driving change and establishing processes through company-wide initiatives
  • Strong experience and knowledge of security systems and compliance/privacy certifications, practices, and processes
  • ideally, you have led security or trust & safety programs in the past
  • Experience in analyzing business priorities, customer needs, and industry trends, and articulating a long-term roadmap in Privacy, Security, and Compliance
  • A deep understanding of cybersecurity principles, the threat landscape, and best practices
  • Excellent interpersonal skills, with the ability to communicate effectively with both technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Define Strategy and Develop a Roadmap: Create a strategy and roadmap for delivering Security and Compliance programs that align with Atlassian's business objectives and comply with relevant laws and regulations
  • Lead the Delivery of Critical Projects: Manage multiple streams of work simultaneously, focusing primarily on: Building Tools: Develop systems to integrate security/compliance checks into the product design process and Software Development Lifecycle (SDL)
  • Collaborating with Experts: Work closely with CISO, legal, data governance, and compliance teams
  • Achieving Certifications: Assist Atlassian in obtaining regulatory certifications
  • Collaborate with Key Stakeholders: Work closely with stakeholders in the US, Australia, and India to understand key certification, security, privacy, compliance requirements, while maintaining a deep understanding of our products and platform capabilities
  • Develop Processes and Practices: Work with leaders across the company to enhance Atlassian’s security posture through high-quality data and scalable solutions
  • Communicate Effectively: Ensure a comprehensive understanding of status, risks, dependencies, and insights across teams, functions, and programs
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
Read More
Arrow Right

Senior Manager, Trust Engagement

The Trust Engagement team is a globally distributed team of security & complianc...
Location
Location
United States
Salary
Salary:
221400.00 - 289050.00 USD / Year
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience across management roles, in Security, Governance, Risk, and Compliance domains
  • Experience mentoring and developing high performing teams, with a track record of elevating team capability and fostering a culture of excellence
  • Demonstrated ability to influence cross functional teams and drive organizational change in security, risk, and compliance domains
  • Proven success in driving programs that scale trust and security practices across large organizations
  • Evidence of impact beyond individual projects, such as shaping strategy or leading initiatives that span multiple departments or regions
  • Proven ability to brief and influence executives and customers on trust, security, and compliance strategy
  • Knowledge of various compliance and security certifications (FedRAMP, ISO 27001, PCI-DSS, etc.)
  • Experience working with Regulatory Compliance, Global Privacy Programs, Cloud Security or related functions
  • Experience in a large-scale enterprise Cloud solutions
Job Responsibility
Job Responsibility
  • Provide leadership, mentorship, and manage a high performing team of AMER based professionals, fostering a culture of technical excellence and continuous improvement across the Trust Engagement function
  • Contribute to strategic planning for the Trust Engagement function with senior leadership, shaping and executing a winning enterprise strategy that aligns with Atlassian’s Trust objectives
  • Drive improvements in processes, tooling, and reporting to enhance the effectiveness and scalability of Trust Engagement programs
  • Partner cross functionally with security, compliance, and legal teams on strategic initiatives that deliver customer trust outcomes at scale
  • Act as the primary point of contact for Strategic & Enterprise customer escalations, driving timely resolution and preventing recurrence through post incident reviews and process improvements
  • Support Atlassian Executive Briefings by presenting Atlassian’s Trust Strategy to customers in pre and post sales engagements
  • Support legal in negotiating security and compliance terms & exhibits for Atlassian Customer Agreements
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
  • Fulltime
Read More
Arrow Right

Senior Trust Analyst

The Trust Engagement team is a globally distributed group of risk professionals ...
Location
Location
Poland , Gdańsk
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years experience working with customers across Security, Governance, Risk and Compliance domain areas
  • Expertise to guide discussions about security and risk trade-offs
  • Customer facing or consulting engagement experience
  • Success with customer, executive, or board member briefings on strategy
  • Knowledge of security, compliance and privacy frameworks & standards (e.g., GDPR, HIPAA, SOC2, ISO27001, NIST 800-53, PCI-DSS, C5)
  • Experience working with Regulatory Compliance, Global Privacy Programs, Cloud Security or related functions
  • Familiarity with large-scale enterprise SaaS platforms and challenges across security, privacy and compliance related to customer trust
  • Understanding of cybersecurity principles and their application in a SaaS context
  • Understanding infrastructure and delivery models of SaaS products
  • Proficient knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud) and their services
Job Responsibility
Job Responsibility
  • Represent Atlassian with our Strategic & Enterprise customers to remove trust as a blocker for customer acquisition, customer migration, and long term customer retention
  • Be accountable for engaging in a variety of Atlassian customer facing initiatives. Your primary focus will involve helping our customers gain an understanding of Atlassian’s commitment to Trust by articulating our Security practices, Compliance posture, and Privacy measures
  • Manage complex customer security reviews & audits
  • Support legal in negotiating security and compliance terms & exhibits for Atlassian Customer Agreements
  • Represent the Voice of the Customer by identifying deal blockers and friction points to influence Security, Product & Engineering strategy in meeting customer expectations
  • Drive customer facing Trust collateral by publishing publicly facing materials, presentations, white papers
  • Provide security, compliance, and privacy education and training to internal partner teams in Sales, Product Marketing, Legal, etc.
  • Mentor team through technical leadership and knowledge sharing.
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
  • Various perks described at go.atlassian.com/perksandbenefits.
  • Fulltime
Read More
Arrow Right

Senior Trust Analyst

The Trust Engagement team is a globally distributed group of risk professionals ...
Location
Location
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-7+ years experience working with customers across Security, Governance, Risk and Compliance domain areas
  • Expertise to guide discussions about security and risk trade-offs
  • Customer facing or consulting engagement experience
  • Success with customer, executive, or board member briefings on strategy
  • Knowledge of security, compliance and privacy frameworks & standards (e.g., GDPR, HIPAA, SOC2, ISO27001, NIST 800-53, PCI-DSS)
  • Experience working with Regulatory Compliance, Global Privacy Programs, Cloud Security or related functions
  • Familiarity with large-scale enterprise SaaS platforms and challenges across security, privacy and compliance related to customer trust
  • Understanding of cybersecurity principles and their application in a SaaS context
  • Understanding infrastructure and delivery models of SaaS products
  • Proficient knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud) and their services
Job Responsibility
Job Responsibility
  • Represent Atlassian with our customers to remove trust as a blocker for customer acquisition, customer migration, and long term customer retention
  • Be accountable for engaging in a variety of Atlassian customer facing initiatives. Your primary focus will involve helping our customers gain an understanding of Atlassian’s commitment to Trust by articulating our Security practices, Compliance posture, and Privacy measures
  • Manage complex customer security reviews & audits
  • Support legal in negotiating security and compliance terms & exhibits for Atlassian Customer Agreements
  • Represent the Voice of the Customer by identifying deal blockers and friction points to influence Security, Product & Engineering strategy in meeting customer expectations
  • Drive customer facing Trust collateral by publishing publicly facing materials, presentations, white papers
  • Provide security, compliance, and privacy education and training to internal partner teams in Sales, Product Marketing, Legal, etc.
  • Mentor team through technical leadership and knowledge sharing
What we offer
What we offer
  • health and wellbeing resources
  • paid volunteer days
Read More
Arrow Right

Senior Trust Analyst

The Trust Engagement team is a globally distributed group of Security and Risk p...
Location
Location
Poland , Gdańsk
Salary
Salary:
Not provided
https://www.atlassian.com Logo
Atlassian
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years experience working with customers across Security, Governance, Risk and Compliance domain areas
  • Expertise to lead discussions with decision makers about security and risk trade-offs
  • Direct customer-facing or consulting engagement experience
  • Success with customer, executive, or board member briefings on strategy, including impactful and effective presentations
  • Knowledge of security, compliance, and privacy frameworks & standards (e.g., GDPR, HIPAA, SOC2, ISO27001, NIST 800-53, PCI-DSS, C5, DORA, NIS2)
  • Experience working with Regulatory Compliance, Global Privacy Programs, Cloud Security or related functions
  • Familiarity with large-scale enterprise SaaS platforms and challenges across security, privacy and compliance related to customer trust
  • Experience with cybersecurity principles and controls, including their application in a SaaS context
  • Understanding infrastructure and delivery models of SaaS products
  • Proficient knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud) and their services
Job Responsibility
Job Responsibility
  • Represent Atlassian with our Strategic & Enterprise customers to manage trust-related questions and concerns for customer acquisition, customer migration, and long term customer retention
  • Be accountable for engaging in a variety of Atlassian customer facing initiatives. Your primary focus will involve helping our customers gain an understanding of Atlassian’s commitment to Trust by articulating our Security practices, Compliance posture, Privacy measures, Resilience efforts and Anti-Abuse program
  • Manage complex customer security reviews & audits
  • Support Atlassian’s legal teams in negotiating security and compliance terms & exhibits for Atlassian Customer Agreements
  • Represent the Voice of the Customer by identifying deal blockers and friction points to influence Security, Product & Engineering strategy in meeting customer expectations
  • Drive customer facing Trust collateral by publishing publicly facing materials, presentations, white papers
  • Provide security, compliance, and privacy education and training to internal partner teams in Sales, Product Marketing, Legal, etc.
  • Mentor team through technical leadership and knowledge sharing.
What we offer
What we offer
  • Health and wellbeing resources
  • Paid volunteer days
  • Wide range of perks and benefits designed to support you and your family.
Read More
Arrow Right

Program Manager

Come join our growing team and make a difference every day! AnaVation is seeking...
Location
Location
United States , Washington, DC
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s or master’s degree in Project Management, Information Systems, Cybersecurity, Business Administration, or a related field preferred
  • In lieu of a degree, at least ten (10) years of progressively responsible program management experience in federal IT or cybersecurity environments is required
  • A minimum of eight (8) years of overall experience
  • At least five (5) years of experience managing cybersecurity and Governance, Risk, and Compliance (GRC)-specific programs on large federal enterprise systems
  • Project Management Professional (PMP) certification is required
  • Certified Information Systems Security Professional (CISSP) certification is required
  • Proven experience leading cross-functional technical teams in a cybersecurity or RMF-compliant environment
  • Project or task management experience and the ability to perform standard project management tasks
  • Must have excellent written and verbal communication skills and the ability to produce deliverables of high quality without oversight
  • Strong understanding of NIST SP 800-53, RMF, FISMA, federal cybersecurity policy, ATO processes, etc.
Job Responsibility
Job Responsibility
  • Provide overall program leadership and oversight across all contract activities
  • Manage day-to-day operations, team schedules, and performance metrics
  • Serve as the primary interface with stakeholders, including the COR and GTM
  • Ensure timely submission of weekly activity reports, deliverables, and quality control plans
  • Develop and execute transition plans, staffing plans, and strategic recommendations
  • Monitor financial status, operational risks, and program milestones
  • Review ISSO outputs for completeness, accuracy, and compliance with RMF and standards
  • Coordinate training, leave schedules, and ensure contract staffing remains at required levels
  • Lead quality assurance activities and maintain program documentation
  • Evaluate and support special projects to enhance program efficiency or cybersecurity posture
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vita...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products
  • Fulltime
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy