Security, Privacy and Compliance Manager
San Francisco (or US Remote) /
Build the world's fastest Identity and Checkout products
Our mission is to make buying online faster, safer and easier for everyone. Fast Login and Fast Checkout enable a one-click sign-in and purchasing experience that makes it easier for people to buy and merchants to sell. The company’s products work on any browser, device or platform to deliver a consistent, stress-free purchasing experience. Fast is entirely consumer-focused and invests heavily in its users’ privacy and data security. Headquartered in San Francisco with Fast Flex for global employment, we are a privately held company funded by Stripe, Index Ventures, Susa Ventures and other renowned investors.
We are looking for a Technical Program Manager - Security and Compliance to manage Fast’s ongoing security and compliance activities. This role will be reporting to the VP, Security at Fast and will be responsible for defining and conducting security & compliance program activities, developing effective metrics and reporting systems and managing the external and internal audit support. This role will also support our Sales team with pre-Sales RFPs and security workshops.
-Manage PCI, SOC 1, SOC 2 compliance projects across multiple teams, including operations, IT and development
-Develop internal policy and procedure documents to support Fast’s security & compliance initiatives
-Provide responses to customer security questionnaires and RFPs
-Develop and own the annual risk assessment, disaster recovery and business continuity plan
-Provide responses to customer security questionnaires and RFPs and participate in pre-sales calls with customers to discuss Fast’s security & compliance capabilities
-Coordinate external & internal security & compliance audit activities
-Advise internal business stakeholders on risk and compliance requirements and work in cross-functional partnership to help ensure those requirements are met
-Clearly explain our security & compliance program to third parties, including customers and vendors
-Keep track of new regulations, industry best practices, and implement continuous improvement on an ongoing basis
-Work with legal on development of privacy artifacts e.g Privacy Policies, Privacy Impact Assessment (PIA) etc.
-5+ years of experience in an equivalent security and compliance related role
-Strong knowledge of industry compliance standards as they relate to Software as a Service, such as SOC1, SOC2, PCI DSS, GDPR and CCPA
-Familiarity with Cloud Computing and Software as a Service
-Keen attention to detail and accuracy is necessary in order to analyze and finalize documentsOrganized, responsive, and able to gain support and consensus with multiple stakeholders
-Strong communications skills, both written and oral
-Certifications such as CISA, CISM, CISSP desirable, but not required
*No recruiters please*
Benefits of life @ Fast
*Fast Flex allows all of our employees to choose where they want to work: our office (when open), their home
or any place else in the world.
*Help eliminate passwords and expand e-commerce worldwide
*Innovative engineering and product culture
*Early stage well-funded company
*Inclusion and diversity as a company priority
*Competitive compensation packages
*Comprehensive benefits (including 99% of healthcare cost and 401k matching)
*Additional benefits include home office reimbursements and snack deliveries