Senior Manager, Security, Risk & Compliance

Job not on LinkedIn

November 22

Apply Now

Receive Emails with Similar Jobs

Secure Code Warrior

WebsiteLinkedInAll Job Openings

SaaS • Cybersecurity • Education

Secure Code Warrior is a leading provider of secure coding training platforms designed to enhance developer skills and reduce software vulnerabilities. Their learning solutions include coding labs, courses, missions, challenges, and videos, all aimed at empowering developers to release secure, quality code quickly and efficiently. The platform integrates with various developer tools to boost productivity and accuracy in software development. Trusted by over 600 enterprises globally, Secure Code Warrior helps organizations achieve compliance, mitigate risk, and maximize ROI through its robust, all-in-one, industry-leading solution. They work closely with security and engineering teams to foster a culture of security by providing hands-on learning experiences, assessments, and certifications.

201 - 500 employees

Founded 2015

☁️ SaaS

🔒 Cybersecurity

📚 Education

💰 $48M Series B on 2019-12

📋 Description

• Ensure Customer Trust • Customers trust their data on our systems. Your #1 priority is ensuring customers continue to trust SCW’s systems, product and risk frameworks. • Ensure Sales Engineering can execute enterprise customer security reviews, DPA’s, complete RFPs and security diligence quickly and efficiently. • Work closely with Legal, Sales and Revenue in the customer onboarding process to translate complex security requirements into clear, customer-friendly language. • Maintain SCW Trust Centre and our Helpdesk security pages (https://help.securecodewarrior.com/hc/en-us/categories/360001983011-General-FAQs-more). • Participate in customer cyber conversations and represent SCW’s security posture with credibility and clarity. • Lead Security, Risk, Compliance & AI Governance. • Lead security compliance activities across frameworks such as SOC2, ISO 27001, ISO42001, EU regulations (GDPR, CRA, NIS2), AI-specific regulations, and other evolving global standards. • Provide both strategic guidance and hands-on execution for GRC initiatives. • Cross-Functional Partnership. • Partner with Engineering & Product, Corporate IT and Business Ops to embed security-by-design across the company. • Review new product capabilities and business initiatives to ensure alignment with security and privacy requirements. • Governance, Reporting & Program Ownership. • Co-develop SCW’s GRC strategy with the CFO and General Counsel. • Drive the Information Security Committee: agendas, follow-ups, speakers, and cross-functional alignment. • Oversee incident response, business continuity, disaster recovery planning, and compliance. • Prepare and deliver reports to Senior Leadership, the Audit Committee, Board of Directors, and key investors. • Security Education, Awareness & Vendor Management. • Lead internal security awareness training. • Manage vendor risk assessments from procurement through ongoing monitoring. • Own the assessment and completion of external security questionnaires.

🎯 Requirements

• 7–10+ years of relevant security, risk, or compliance experience in Enterprise SaaS environment • 5+ years directly in Security/GRC roles • Experience in mid–late stage startups or scale-ups • Hands-on involvement with SOC 2, ISO 27001, GDPR, NIST, or similar frameworks • Experience working closely with Sales, Legal, and Product teams as a security SME • Strong technical understanding of cloud, application security, and modern infrastructure • AI security and governance exposure, including LLM threat modeling, AI data privacy considerations, and modern AI attack surfaces • Ability to communicate complex topics simply - to executives, engineers, and customers • One or more relevant certifications preferred (CISM, CISSP, CISA, CRISC, ISO 27001 Lead Auditor/Implementer, etc.)

🏖️ Benefits

• Health insurance • Professional development opportunities