Staff Technical Program Manager, R&D Compliance

An overview of this role

The Staff Technical Program Manager, R&D Compliance focuses on operating our compliance programs across our Engineering and Product teams. They are proficient in all things compliance and are comfortable working with cloud-native technologies. 

As the lead of our R&D compliance programs, you will assess technology-related compliance issues across the organization including information security, identity management, user access, and data integrity. This includes working with systems owners and administrators to identify, document, and monitor current risks and controls.

What you'll do

• Be the R&D Compliance Expert at GitLab. A hands-on leader and SOX compliance subject matter expert who is embedded into R&D as our 2nd line of audit defense. Works with R&D stakeholders to design, document, test, and remediate IT systems controls to achieve ongoing compliance with SOX and other applicable compliance standards such as SOC2, ISO 27001, and GDPR. Interfaces with internal and external auditors
• A change agent, influencer, cross-functional leader and collaborator to drive and facilitate ongoing SOX and compliance training programs for R&D process and control owners
• Ascertaining the appropriateness of the Company’s protection and safeguarding of assets and information and recommending areas for improvements
• Triage and manage compliance priorities of the R&D division
• Create and execute a plan to develop and mature our IT Compliance capabilities and Infrastructure
• Collaborate with all functions of the company to ensure IT Compliance needs are addressed

What you'll bring

This role includes all of the requirements above, plus:

• Professional certification such as CISA, CISM, CISSP or similar is strongly preferred.
• Minimum 7+ years of relevant work experience (Big 4 public accounting and corporate SOX experience in a multi-national public company strongly preferred)
• Must have recent hands-on SOX experience including successful remediation of compliance deficiencies and material weaknesses with similar size companies.
• Proven track record of successful collaboration with internal and external partners
• Strong planning, project management, and analytical skills.
• Experience managing the execution of complex programs that span multiple cross-functional teams
• Experience working with leadership to execute on IT Compliance processes and procedures
• Contribute to and enable GitLab’s operational strategy by enabling distributed asynchronous operations while ensuring compliance with GDPR, SOX, ISO 27001, and other standards
• Ability to use GitLab
• Experience building and maintaining corporate R&D Compliance policies and processes