Director, Compliance

About The Position

Requirements

• Bachelor’s degree in a relevant field (e.g., Law, Business, Information Security, or related discipline).
• 8+ years of experience in compliance, risk management, or audit roles within technology or highly regulated industries.
• Deep expertise in compliance frameworks such as SOC 2, FedRAMP, PCI DSS, E8, ISM, HIPAA, and privacy regulations.
• Demonstrated experience managing audits, regulatory assessments, and third-party risk programs.
• Strong understanding of risk management methodologies and business continuity planning.
• Excellent communication and stakeholder management skills, with the ability to influence at all levels of the organization.
• Proven leadership experience, including building and developing high-performing teams.
• U.S. citizenship required; must be based in the United States.

Nice To Haves

• Professional certifications such as CISA, CISM, CRISC, or similar are highly desirable.

Responsibilities

• Develop, implement, and maintain comprehensive compliance programs covering compliance frameworks such as FedRAMP, PCI, E8, ISM, HIPAA, and others as required.
• Lead internal and external audit management, including coordination of evidence collection, audit responses, and remediation activities.
• Oversee third-party risk management (TPRM) activities, including vendor risk assessments, ongoing monitoring, due diligence, and remediation of third-party risks.
• Oversee customer assurance processes, ensuring timely and accurate responses to customer security reviews and compliance questionnaires.
• Manage internal risk management activities, including risk assessments, mitigation planning, and ongoing monitoring.
• Maintain up-to-date knowledge of relevant laws, regulations, and standards, and ensure organizational policies and controls are aligned accordingly.
• Serve as the primary liaison with external auditors, regulatory agencies, and customers on compliance matters.
• Collaborate with business, engineering, and security teams to ensure compliance requirements are integrated into operational and technical processes.
• Drive business continuity planning and privacy program management, ensuring readiness for regulatory changes and incident response.
• Report regularly on compliance status.
• Lead and mentor a team of compliance professionals, fostering a culture of accountability, transparency, and continuous improvement.

Benefits

• Impact at Scale – Drive the growth of a market-leading cybersecurity company.
• Thriving Company Culture – DTEX fosters a values-driven environment prioritizing respect, inclusion, and collaboration.
• Growth & Development – Opportunities for professional advancement and lifelong learning.
• Flexibility – Hybrid or remote work options.
• Comprehensive Benefits – Competitive compensation, equity participation, health and wellness benefits, and generous time-off policies