
Security and Compliance Specialist at Unbounce. Location Information: Remote. . We’re a results focused, customer-obsessed company motivated by our passion for empowering digital marketers to achieve success with their campaigns. With intuitive landing page builders and a comprehensive suite of AI-powered features, our platform helps you grow smarter.. . In 2024, Unbounce, a leading landing page creation and conversion optimization platform, merged with Insightly, a CRM and marketing automation platform. We’re beginning to move toward a unified brand, making it an exciting time to join and help shape our product strategy. In the meantime, you’ll get to know two powerful tools that simplify how marketing and sales teams collaborate.. . Our team's technical expertise and creativity work together to drive our mission forward every day. We strive to be a workplace of inspired minds by fostering an environment where innovative thinking is encouraged, and where everyone is given the opportunity to grow and contribute to the achievement of their goals. We aim to continue being an innovative and inspiring company that both our customers and employees admire—and we invite our future team members to join us!. . About the role. . We are currently seeking a versatile GRC professional to fill the role of Security and Compliance Specialist to achieve our company’s data security and compliance objectives.. This individual is responsible for developing, maintaining and enhancing Unbounce’s Governance, Risk and Compliance (GRC) program. In this position, you will be the primary point of contact for data privacy, information security, and compliance matters. . . Your responsibilities will include assisting with coordination for the organization’s information security and compliance program. This includes developing, implementing, and maintaining an information assurance program that meets or exceeds the requirements of industry regulations, standards, policies, and legal requirements. Additionally, you will address inquiries related to data processing and play a key role in educating our colleagues, or "Unbouncers," on all aspects of data privacy, information security, and regulatory compliance. Collaborating with cross-functional teams within Engineering and across the organization, you will provide expertise to support our customers and internal initiatives.. . Reporting directly to the Security & Compliance Lead, you will be an integral part of the Information Security and Data Privacy team. Your collaborative efforts with the Legal and IT teams will contribute to maintaining a robust security and compliance posture for our organization. Join Unbounce to play a meaningful role in advancing our security, compliance, and data privacy initiatives.. . . . KEY RESPONSIBILITIES:. . . Partnering with Engineering on technical policy reviews & controls (Change Management - CI/CD, Access Control, encryption) . . Respond to slack threads to clarify compliance requirements . . Spot checking & updating controls proactively with the teams, aimed at the point of focus and our organizations needs . . Analyst will also take a senior lead in the development and maintenance of an organization wide Cyber Education and awareness program to include awareness communications, training course development, and social engineering testing. . Stays current on applicable laws, regulations, developing regulatory concerns and changing IT and InfoSec trends, standards.and security best practices. . Supports internal and external audit processes for related compliance requirements. . Perform IT Security Reviews and prepare audit evidence. . Collaborates to develop IT and organizational policies and standards in support of legal and regulatory compliance needs as well as general IT and organizational information security practices.. . Act as the point of contact to assist and respond to requests and questions from IT stakeholders, business leaders, third parties/vendors, consultants, and government agencies.. . Monitoring and Reporting: Track remediation efforts, escalate issues as needed, and report control statuses to management. . Develop materials to provide regular updates to Executives on the overall health of the program including preparing necessary information to facilitate management discussion and decision making.. . Control Documentation: Develop and maintain documentation of ITGCs, control matrices, unified control frameworks, risk assessments, and testing methodology. . Performs internal risk assessments; validates effectiveness of security controls; recommends appropriate actions to mitigate risks; assesses / evaluates / makes recommendations related to adequacy of security controls. . Supports vulnerability management efforts (e.g., remediation tracking, status reporting, enhancements). . Training and Guidance: Guide business teams on SOX and SOC 2 compliance requirements as well as corporate security policies and best practices.. . . . . QUALIFICATIONS:. . Education & Experience:. . Required:. . . A minimum of 3 years of experience in privacy and compliance roles (e.g., GRC Analyst, GRC Specialist, Privacy Analyst, Compliance Analyst, Privacy & Compliance Specialist). This isn’t an entry level job, but if you’re confident that you can show us that you know all of that and want to prove it a different way, we’re open to that. . . . Suggested:. . . You possess at least one professional certification related to data privacy, compliance, and/or information security, such as IAPP, CIPP, CIPP/E, CCEP, CCEP-I. . . One or more professional security certifications (e.g., CISSP, CISA, CISM, CRISC).. . . Skills & Competencies:. . Required:. . . Extensive experience in IT systems, security policies, standards, industry trends, and techniques. . Ability to articulate risk in terms of business impact and suggest reasonable strategies for mitigation. . Experience supporting internal and external audits, including driving continuous compliance and remediation efforts.. . Strong understanding and experience in policy development, designing information security controls and managing risk registers, control libraries and compliance metrics.. . Experience working with external audit partners. . Strong understanding of data protection, privacy, and regulatory frameworks, including GDPR, CCPA, PCI, HIPAA, PCI-DSS, US data privacy laws. . Experience in GRC activities, policy creation, development, and associated lifecycle management activities.. . Familiarity with contract processes and language specific to data protection and privacy regulations.. . Excellent interpersonal, communication, organizational, research, and analytical skills with a proven ability to interact with co-workers, clients, and third-party vendors. Ability to adopt a customer-first approach.. . . . . What’s in it for you:. . 💵 $76,363 - $99,183 CAD. . 🤝 Flexibility and Time Off. . . Flexible Time Off Policy - We encourage a minimum of 4 weeks per year!. . Remote First Team. . Flexible Hours. . Work From Anywhere Program. . . 🩺 Health and Wellness. . . Health Insurance. . Employee Assistance Program (EAP). . Quarterly Company Wide Recharge Days. . End of Year Company Wide Holiday Closure. . Maternity & Parental Leave Program. . $2000 Lifestyle Spending Account (LSA). . Weekly Virtual Yoga Classes. . . 🌱Growth & Future. . . RRSP, 401(K), WWK Pension Personal Contributions. . Volunteer Day. . Team Building Budget. . Referral Program ($1000). . Anniversary Milestone LSA Top Up. . Birthday Day Off. . Professional Development Budget. . . 🌟And more perks!. . Share our values: . . . Customer First. . Bias for Action. . High Velocity Decision Making. . Value Individuality. . Results Focused. . . We Value Individuality! . . At Unbounce, we want every employee to be excited to bring their full, authentic self to work. When you bring your unique experiences, background, knowledge, perspective, and self-expression while embracing the same from others we learn from each other. We innovate and co-create an environment where team members can do the best work of their careers. We’re bolder and more brilliant together.. . We’re dedicated to ensuring each team member feels a sense of belonging, feels safe, cared for, respected and valued for who they are, and trusts that their unique voice is heard, embraced, and meaningfully contributes to decision-making. We’re committed to equitable employee experience, opportunity, pay and support for every employee regardless of gender identity or expression, race, ethnicity, family or marital status, religion, socio-economic status, veteran status, national origin, age, sexual orientation, education, disability, or any other characteristic that makes you unique.. . We have no tolerance for sexism, racism, xenophobia, homophobia, transphobia, ableism, ageism, or any other forms of hateful/harmful discrimination and we’re taking action against unequal pay in our community through leading the #PayUpforProgress movement. . . If you require any accommodations or support during the recruitment process, please email us at [email protected].. . . . Think this could be the perfect fit? Click "Apply," share a link to your portfolio, and we’ll be in touch!. We Value Individuality! . . At Unbounce, we want every employee to be excited to bring their full, authentic self to work. When you bring your unique experiences, background, knowledge, perspective, and self-expression while embracing the same from others we learn from each other. We innovate and co-create an environment where team members can do the best work of their careers. We’re bolder and more brilliant together.. . We’re dedicated to ensuring each team member feels a sense of belonging, feels safe, cared for, respected and valued for who they are, and trusts that their unique voice is heard, embraced, and meaningfully contributes to decision-making. We’re committed to equitable employee experience, opportunity, pay and support for every employee regardless of gender identity or expression, race, ethnicity, family or marital status, religion, socio-economic status, veteran status, national origin, age, sexual orientation, education, disability, or any other characteristic that makes you unique.. . We have no tolerance for sexism, racism, xenophobia, homophobia, transphobia, ableism, ageism, or any other forms of hateful/harmful discrimination and we’re taking action against unequal pay in our community through leading the #PayUpforProgress movement. . . If you require any accommodations or support during the recruitment process, please email us at [email protected].. .