Original listing text, shown exactly as published by the company.
What You'll Do
- Build the business case and strategic roadmap for compliance investments, articulating ROI, certification sequencing, and market opportunity to leadership
- Lead gap assessments and compliance readiness evaluations across applicable frameworks, producing maturity baselines and prioritized remediation roadmaps
- Select, onboard, and manage third-party assessors and compliance advisors; hold partners accountable to timelines and escalate risks early
- Drive audit readiness — coordinating evidence collection, continuous monitoring, and audit documentation management with Engineering and Security
- Support customer security reviews, RFP responses, and due diligence conversations as the authoritative internal voice on Harvey's compliance posture
- Build and lead a small team: hire, set direction, develop members, and scale program operations as Harvey's footprint grows
What You Have
- 10+ years in information security or compliance, with 5+ years leading compliance programs for commercial SaaS or PaaS
- Deep command of the compliance lifecycle -- scoping, gap analysis, control documentation, assessment coordination, and continuous monitoring
- Proven cross-functional influence at the senior level; able to drive compliance outcomes across Engineering, Product, Legal, and Sales without slowing the business
- Track record selecting and managing third-party assessors and compliance advisory firms
- Experience building and leading small teams in fast-paced environments, with a bias for hiring exceptional people and creating clarity from ambiguity
- 1–2+ years using AI tools to improve program efficiency (evidence automation, gap analysis, continuous monitoring)
Compensation
$187,600 - $281,400 USD
Depending on your location, an Applicant Privacy Notice may apply to you. You can find all of our Applicant Privacy Notices [here].
#LI-KV1…
