Compliance Enablement Technical Program Manager

🕒 April 8

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Sophos

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

Founded 1985

🔒 Cybersecurity

☁️ SaaS

💰 Post-IPO Equity on 2021-08

Cybersecurity • SaaS

Sophos is a leading cybersecurity company that specializes in protecting businesses against advanced cyber threats. The company offers a comprehensive suite of security solutions, including endpoint protection, managed detection and response (MDR), network security, and cloud security. With a prevention-first approach, Sophos aims to stop ransomware and other cyber threats before they cause harm. Sophos provides services such as threat research, security training, and operational support to ensure robust defense against cyberattacks. Their solutions cater to various industries including finance, healthcare, government, manufacturing, and retail. The Sophos Central platform delivers centralized security management, integrating seamlessly with existing IT infrastructure to enhance security posture.

📋 Description

• Own and operate the GRC platform • Integrate GRC tools with cloud platforms (AWS, Azure, GCP) • Design and implement automated workflows for evidence collection • Build and maintain dashboards to visualize compliance posture • Design, build, and operate AI agents that automate the compliance lifecycle • Apply AI-assisted workflows to evidence validation and control evaluation • Conduct gap analyses and support implementation of new compliance frameworks • Prepare compliance documentation and monitor adherence to internal controls • Partner cross-functionally with engineering, product, security, and legal teams to ensure controls are operationalized • Communicate compliance risk and control status to stakeholders

🎯 Requirements

• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field (or equivalent experience) • 4+ years of experience in GRC, engineering, or a technical discipline supporting cybersecurity programs • In-depth knowledge of cybersecurity frameworks including NIST 800-53, ISO 27001, SOC 2, and/or FedRAMP • Technical background in systems administration, software engineering, cloud security, or security engineering • Hands-on experience with cloud infrastructure (AWS, Azure, or GCP) • Hands-on experience with a GRC platforms for control tracking, evidence management, and findings remediation • Proficiency with security monitoring concepts and tooling • Demonstrated professional use of AI tools to support drafting, analysis, evaluation, or workflow automation within compliance or technical programs • Strong project management skills with experience leading security assessment initiatives across multiple stakeholders • Familiarity with Git workflows and repository access management.

🏖️ Benefits

• Sophos operates a remote-first working model • Employee-led diversity and inclusion networks • Annual charity and fundraising initiatives • Global employee sustainability initiatives • Global wellbeing days • Monthly wellbeing webinars and training