Previous Job
Previous
ISO COMPLIANCE MANAGER
Ref No.: 18-02340
Location: mississauga, Ontario
The mission of the Compliance team is to provide evidence that builds customer trust in authorizing/certification audit of security and privacy, by obtaining relevant industry certifications and making audit information available to assist customers in satisfying their compliance requirements.

Responsibilities:
  • Ensuring compliance with industry regulations and working with independent, external auditors to demonstrate such compliance to achieve certification of compliance.
  • Stay abreast of industry requirements for certifications relevant to Auth0's business.
  • Maintain in-depth knowledge of certifications and controls such as PCI-DSS, ISO 27001, GDPR.
  • Develop control definitions and pass criteria for compliance.
  • Interview internal resources and review process documentation to assess compliance with established controls and identify gaps.
  • Work with other teams to identify solutions for compliance gaps.
  • Track compliance gaps and ensure work to remediate gaps meets deadlines.
  • Conduct periodic reviews of policies, procedures and operations for compliance.
  • Conduct periodic reviews of vendors' certifications and compliance.
  • Organize and present audit documents for review with external auditors.
  • Conduct internal audits to identify risks and manage risk-tracking efforts so audit for ISO certification runs smoothly.  
  • Create and deliver training to employees on compliance topics.
  • Define and monitor metrics on compliance progress.
  • Drive innovation to improve compliance effectiveness and efficiency.
  • Prepare customer-facing collateral on compliance efforts.
  • Meet with customers to resolve concerns related to privacy, security and compliance.
  • Respond to customer inquiries on compliance related matters.

Requirements:
  • Minimum 5 years work experience in ISO compliance within the software industry.
  • Knowledge of industry cloud technologies.
  • Experience with certifications and standards such as PCI-DSS, ISO 27001.
  • Experience with information security principles/practices.
  • Experience with privacy principles/practices.
  • Some experience with software development practices.
  • Excellent written and verbal communication skills (English).
  • Passionate about security, privacy and compliance.
  • Have experience with and are comfortable with a remote working environment.
  • Bachelor's degree in a related field.

Extra Points:
  • Public Accounting/Big 4 Consulting Experience.
  • Technical information security Experience.
  • BA/BS in Computer Science, Engineering.


NTT DATA Services is a leading IT services provider and global innovation partner with 130,000 professionals based in over 50 countries. NTT DATA  recently acquired Dell Services.  NTT DATA Services emphasizes long-term commitment and combines global reach and local intimacy to provide premier professional services, including consulting, application services, business process, IT outsourcing, and cloud-based solutions. We are a part of NTT Group, one of the world's largest technology services companies, generating more than $100 billion in annual revenues and partner to 80% of the Fortune 100. Visit www.nttdataservices.com to learn how our consultants, projects, managed services, and outsourcing engagements deliver value for a wide range of businesses and government agencies.
 
The Company is an equal opportunity employer and makes employment decisions on the basis of merit and business needs.  The Company will consider all qualified applicants for employment without regard to race, color, religious creed, citizenship, national origin, ancestry, age, sex, sexual orientation, genetic information, physical or mental disability, veteran or marital status, or any other class protected by law.  To comply with applicable laws ensuring equal employment opportunities to qualified individuals with a disability, the Company will make reasonable accommodations for the known physical or mental limitations of an otherwise qualified individual with a disability who is an applicant or an employee unless undue hardship to the Company would result.