Staff Technical Compliance Manager
Company Overview
Intuit is the global financial technology platform that powers prosperity for the people and communities we serve. With approximately 100 million customers worldwide using products such as TurboTax, Credit Karma, QuickBooks, and Mailchimp, we believe that everyone should have the opportunity to prosper. We never stop working to find new, innovative ways to make that possible.
Job Overview
Do you take joy in stopping bad actors in their tracks? Join us to lead the GBSG (Global Business Solutions Group.) Compliance team to design and develop the next generation of controls and protections for businesses around the world. We are looking for a passionate technology leader to join a world-class team.
As the cybersecurity risk landscape continues to evolve, the importance of scaling our Global Business compliance program to meet the security obligations of our customers and critical partners becomes of utmost importance. We are looking for a motivated, innovative, and passionate Staff Technical Compliance Program Manager who is driven by identifying ways to automate controls oversight through real-time monitoring and reporting. This professional will help improve GBSG and Intuit’s overall compliance program by identifying and driving process improvement opportunities and advocating for change; continuously monitoring the control environment for non-compliance; and reducing audit fatigue; all while establishing trusted partnerships with our global stakeholders to efficiently drive compliance by design.
Intuit prides itself on being innovative, bold, and passionate. This is an exciting opportunity that will be supporting some of our most important and visible compliance initiatives such as ISO 27001, SOC 1/2/3, PCI DSS, IFI/NYDFS, SOX, and other cybersecurity regulatory audits. The Staff Technical Compliance Program Manager has the opportunity to work within a constantly rapidly evolving technology landscape and re-imagine compliance posture management across Intuit.
Responsibilities
- Lead scope expansion opportunities by developing and leveraging a risk-based methodology when introducing new and existing service offerings and its underlying infrastructure components within the scope of applicable audits.
- Lead and manage all aspects of applicable cybersecurity audits, such as scope expansion, audit readiness, walkthroughs, evidence collection, and liaising with internal and external auditors.
- Drive adoption of emerging compliance framework requirements (e.g., ISO 27001:2022) through thorough analysis and prescriptive guidance.
- Evangelize Intuit’s unified controls database to applicable stakeholders (i.e., control owners, Compliance SMEs) to ensure there is a clear understanding of roles and responsibilities.
- Support the policies and standards lifecycle process to ensure they address all current and emerging cybersecurity regulatory requirements.
- Have customer obsession and empathy for the needs of our small business customers and stakeholders; be a valued business partner, ensuring we are meeting all compliance commitments, and provide periodic updates on their compliance status to management.
- Work closely with the Product Development teams to define requirements within the automate compliance platform tooling, such as control definitions, attribution, evidence, framework mapping, etc.
- Support the controls lifecycle process through periodic assessments of Intuit’s unified controls database.
- Identify control deficiencies through risk-based continuous monitoring assessments and security controls campaigns and provide recommendations that can be reasonably adopted.
- Document and report noted audit findings and work with control owners on remediation requirements, strategy, and execution.
- Regularly monitor remediation activities for noted findings and escalate remediation plans that are at-risk of being overdue.
- Develop and maintain compliance monitoring dashboards to provide real-time and on-demand compliance status metrics that can be presented to leadership.
- Work closely with control owners (or Providers) to identify ways to effectively monitor compliance posture through automation.
- Establish partnerships with cross-functional teams such as Legal, HR, Security, and IT to ensure they understand their roles when supporting the compliance program.
- Regularly assist with answering and reviewing third party vendor risk and compliance questionnaires with a focus on automation and consistency in response.
Qualifications
- 5+ years working experience in a technology audit, security risk management, and/or security compliance role.
- 10+ years of Program Management team leadership experience, including 5 or more years leading complex enterprise SaaS programs (e.g., AWS, GCP experience desired).
- Proficient knowledge of programming languages such as (Python, Java, C++)
- Demonstrated experience with IT/security internal control definition, development, automation, implementation, and monitoring.
- Extensive experience driving auditing compliance programs in accordance with security frameworks (such as ISO 27001, SOC 1/2/3, PCI-DSS, IFI/NYDFS, SOX, and/or NIST 800-53) across multiple business units with differing business requirements
- Functional knowledge of multiple security domains and information security industry standards and best practices.
- Understanding of cyber risks management practices, covering the full lifecycle of activities, including risk identification, assessment, mitigation, monitoring, and reporting.
- Good organizational skills, proactive and self-sufficient with a proven ability to work independently.
- Drive, determination, and the ability to overcome roadblocks and initial objections.
- Ability to effectively prioritize and execute tasks, while balancing multiple projects simultaneously.
- Ability to work collaboratively with multiple stakeholders across different backgrounds and skill sets.
- Strong written, verbal communication, and presentation skills.
- BS/BA College Education in a related field (e.g., Computer Science, MIS) or equivalent relevant experience.
- Security-related certifications such as ISO Lead Auditor, CISA, and/or CISSP would be desirable.
Intuit provides a competitive compensation package with a strong pay for performance rewards approach. The expected base pay range for this position is New York $158000 - $213500, Southern California $153500-207500. This position will be eligible for a cash bonus, equity rewards and benefits, in accordance with our applicable plans and programs (see more about our compensation and benefits at Intuit®: Careers | Benefits). Pay offered is based on factors such as job-related knowledge, skills, experience, and work location. To drive ongoing pay equity for employees, Intuit conducts regular comparisons across categories of ethnicity and gender.
Related Content
-
-
GED is a weeklong code-a-thon that brings together Intuit technologists from all over the world to innovate and collaborate on projects they’re passionate about.
-
Article
Benefits
We support our employees by offering benefits you need to stay healthy, achieve financial security, and enjoy peace of mind for you and your family.
-
Intuit has built foundational capabilities for collecting, processing and transforming raw data into a connected mesh of high quality data. Those capabilities are enabling our technologists to build personalized experiences, with speed and at scale, to deliver on our mission to power prosperity around the world
-
Article
Our approach to hybrid work
Intuit embraces a hybrid way of working that brings the best of in-person collaboration and connections together with the flexibility of virtual work.
-
For Intuit, turning data into actionable insights is pivotal to our success in delivering awesome experiences to 100 million customers That’s why we’ve developed an internal generative AI powered tool called Query Kickstart to improve speed to insight by accelerating SQL query authoring for our data workers.
-
Intuit is using generative AI to power our internal developer platforms to enable our software engineers and data workers to be more effective and efficient.
-
Intuit’s Expert Network is revolutionizing the way people access financial expertise. We provide flexible career opportunities and schedules to empower experts who want to grow their careers while being present for their families and other personal or professional pursuits.
-
4 Ways Intuit helped me start a successful tax career
-
Video
Intuit Academy
Start your career as a remote tax preparer or bookkeeper through our Intuit Academy program. The program consists of self-paced online courses, followed by an exam. Upon passing the exam, you will receive a badge that you can easily display to advance your career in the industry.
-
Blog
Improving Tax Skills
I was ready to up my tax game, that's why I joined Intuit
-
Video
DEIB at Intuit
Intuit's Chief DEI Officer, Humera Shahid, on Diversity, Equity, Inclusion, and Belonging
-
Blog
Career Path
Accelerate Your Career Path Inside Intuit
-
Video
Offices of the future
We're building the workforce and workplace of the future by investing in our sites around the world. This video shows how our office designs and features spark innovation for our global teams.
-
-
-
Blog
Internal Mobility
Internal Mobility Can Enhance Skill Development
-
Building a true platform culture to solve customer problems
-
Israel's top 10 best high tech companies for parents
-
Toronto's inclusive workplace design inspired by indigenous ties
-
Blog
Leveraging AI
How Intuit is leveraging AI to enhance customer experience
-
Blog
Using AI Together
11 Things we've learned about using AI together
-
Intuit's mission in Powering Prosperity for All
-
Blog
My Journey
From dreamer to tech leader at Intuit
-
Blog
Winning Culture
The secret behind India's award winning culture
-
Blog
Intuit Dome
Introducing our partnership with the LA Clippers and the groundbreaking Intuit Dome
-
AI skills to boost your tech career
-
Blog
Intuit Survey
US high school students want financial education at school
-
Blog
Velocity Hacks
Velocity Hacks to work harder not smarter
-
Blog
Women in Tech
Why we need more women in tech
-
-
Jobs For You
You haven't viewed any jobs yet. Start exploring now to find the perfect opportunity for you!
View all of our available opportunitiesYou haven't saved any jobs yet. Start exploring now to find the perfect opportunity for you!
View all of our available opportunitiesSign Up for Job Alerts
Be the first to find out about open jobs that fit what you're looking for.