« Back to IT & Security positions

Senior Manager, Technology Risk & Compliance

IT & Security

Dublin

Apply Now

About SurveyMonkey

SurveyMonkey (NASDAQ: SVMK) is a leading global survey software company on a mission to power the curious. The company’s People Powered Data platform empowers over 17 million active users to measure and understand feedback from employees, customers, website and app users, and the market. SurveyMonkey’s products, enterprise solutions and integrations enable 335,000+ organizations to solve daily challenges, from delivering better customer experiences to increasing employee retention. With SurveyMonkey, organizations around the world can transform feedback into business intelligence that drives growth and innovation.

SurveyMonkey is a place where the curious come to grow. By embedding inclusion into our processes, policies, and culture, we are building a workplace for our 1,000+ employees across North America, Europe, and APAC where people of every background can thrive. We’ve won multiple awards and received recognition for our forward-looking policies, including extended parental and bereavement leave, vendor benefits standards, and Take 4 sabbaticals. 

SurveyMonkey was recognized by Great Place to Work® and FORTUNE as a top workplace in 2018 and 2019, and the company has also won numerous awards as a leader in global survey software, including being named among CNBC’s Disruptor 50 and the Forbes Cloud 100. 

Over the past two years we’ve become a public company and expanded our platform with enterprise-grade features in privacy, security and compliance, putting SurveyMonkey on the path to rapidly expand our presence within the Fortune 500. We have ambitious goals to grow our international footprint as well, and every member of our troop plays a critical role in driving this growth and transformation. It’s an incredible time to join the company and be a part of our next chapter!

 

The Team

SurveyMonkey Technology Risk and Compliance (TRC) Team is responsible for enterprise wide risk and compliance, ensuring Leadership has the information needed to make strategic, risk-driven decisions to support and enable our business objectives. The team manages the Information Security Management System (ISMS), builds, deploys, and supports common risk and compliance processes and controls, conducts audits, and ensures that technologies and business operations are structured and configured for data protection and compliance.

 

The Role

The Sr. Manager, Technology Risk and Compliance (TRC) is responsible for developing and implementing the TRC strategy as well as driving ISMS security related activity for SurveyMonkey. Overall, this role will manage, monitor, and improve the ISMS, following ISO/IEC 27001:2013. You will lead a global team of TRC analysts and strategists in shaping the risk and compliance functions across the organization. You will work closely with various teams across the organization (e.g., Legal, Engineering, IT Operations/Infrastructure) to maintain and enhance our security controls. Additionally, you will be involved in a broad spectrum of initiatives, including policy creation and curation, risk management, and compliance. You must be a strategic thinker and innovative problem solver, skilled in working across teams to accomplish various initiatives. Finally, you will be looked upon as a subject matter expert for compliance efforts and controls enhancements. Communication is of the utmost importance.

 

Responsibilities

  • Develop and lead implementation of the multi-year TRC strategy
  • Lead the management, coordination, and operation of all activities related to the ISMS for SurveyMonkey
  • Review all ISMS policies, procedures and other core ISMS framework documents like Statement of Applicability (SOA), Catalogue of Documents (CoD) etc, for all in-scope departments and ensure they are all updated
  • Manage the risk management program by reviewing all existing asset registers and risk registers
  • Collaborate with the SurveyMonkey global stakeholders on a regular basis to ensure the ISMS operates smoothly and continuously improves
  • Liaise with external auditors to ensure all scheduled surveillance audits are completed as planned
  • Manage all internal and external audit findings and ensure remediation on an agreed schedule with the respective control owners
  • Drive continuous improvements of the ISMS by designing and implementing effective metrics
  • Support the various ISMS roles with their responsibilities as documented in the ISMS operations manual
  • Regularly review the scope of the ISMS and ensure its relevance for SurveyMonkey’s business
  • Escalate risk and issues relating to the management and operation of the ISMS to CISO and other interested parties as appropriate
  • Lead and mentor a global team of highly skilled TRC members

 

Qualifications

  • 10+ years of experience in information security, of which minimum of 5 years running an ISMS based on ISO27001
  • Strong working knowledge of security standards and frameworks (e.g., ISO 27001/27017/27018/22301, NIST 800 series, COBIT, etc.) and regulatory/compliance requirements (e.g., GDPR, SOX, PCI-DSS, etc.)
  • Experience developing strategy, policy, technical standards, and guidelines
  • Strong knowledge of risk management frameworks such as ISO 31000, COSO and NIST
  • Experience managing a technical risk management program 
  • Must be able to communicate clearly and concisely with internal and external parties, building strong partnerships with partner organizations
  • Experience in the web services and technology industries, preferably in dynamic and fast changing environments
  • Strong orientation toward problem solving and decision-making in an open and collaborative environment that will benefit the organization as a whole
  • Excellent written and verbal communication skills
  • Comfortable dealing with ambiguity and conflicting priorities
  • Self motivated and directed
  • Ability to travel 25% to United States and across Europe

 

At SurveyMonkey, we offer competitive salaries, medical/dental benefits, PTO, paid holidays and parental leave, and equity compensation.

SurveyMonkey is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Apply Now

« Back to IT & Security positions