Customer Trust Lead

About The Position

Requirements

• 5+ years in information security compliance, vendor risk, customer trust, or a closely related function
• Demonstrated working knowledge of SOC 2, ISO 27001, NIST 800-53, SCCs, SIG, CSA CAIQ, GDPR, and CCPA
• Experience managing high-volume security questionnaire or DDQ workflows, ideally in a SaaS environment
• Exceptional written communication skills – precise, defensible, and audience-aware
• Proficiency with RFPIO or a comparable questionnaire automation platform
• Strong organization skills and ability to manage a large concurrent workload independently

Nice To Haves

• Experience administering or contributing to a Trust Center platform (SafeBase, Vanta, Drata, OneTrust, Whistic, or similar) is preferred, but not required
• Familiarity with public sector or regulated industry requirements (FedRAMP, StateRAMP, CMMC) is preferred, but not required
• Background in T&E, fintech, or multi-product SaaS is preferred, but not required

Responsibilities

• Own end-to-end response for all inbound security questionnaires, DDQs, and vendor risk assessments across new business, renewals, Extended Services engagements, and Installations – supporting the full customer-facing organization via RFPIO
• Maintain and continuously improve a high-quality content library in RFPIO and SafeBase that reflects current, accurate, and approved Emburse positions across all 14 products
• Triage all inbound requests to confirm scope, route non-security requests appropriately with documented rationale, and manage response SLAs with proactive communication; escalate blockers including unanswerable questions and policy gaps
• Serve as the internal subject matter expert on Emburse's security and compliance posture across frameworks including SOC 2, ISO 27001, NIST 800-171, CSA CAIQ, GDPR, CCPA, and others required by the customer base, in direct liaison with the CISO and DPO
• Translate complex technical and compliance concepts into clear, accurate, customer-facing language calibrated to the audience, staying current on Emburse's certifications, audit outcomes, policy changes, and product-level control updates across all products
• Partner with Security, Legal, and Product teams to validate responses, identify gaps, and ensure nothing is overstated or misrepresented
• Co-manage and maintain Emburse's SafeBase Trust Center as the primary self-service destination for customer security inquiries, keeping content current and aligned with the RFPIO content library
• Drive SafeBase adoption among customers and CSMs to reduce inbound DDQ volume for requests that can be self-served, and identify content gaps based on recurring questionnaire themes
• Enforce intake governance: maintain and apply routing guides, SLA tiers, and scope definitions; document and track reason codes for out-of-scope requests, declined engagements, and escalations
• Maintain accurate records of all engagements for pipeline visibility and capacity planning, and contribute to policies governing non-standard intake methods, including customer requests for portal-based vendor risk platform access

Benefits

• Competitive pay
• Flexible work
• An inclusive, collaborative environment that supports your success