Do what you love. Love what you do.
At Workday, we help the world’s largest organizations adapt to what’s next by bringing finance, HR, and planning into a single enterprise cloud. We work hard, and we’re serious about what we do. But we like to have fun, too. We put people first, celebrate diversity, drive innovation, and do good in the communities where we live and work.
Are you a self-motivated risk and compliance professional looking to take on a unique opportunity in the growing cloud computing world? Do you enjoy building and managing risk and compliance programs in fast paced and rapidly growing environments? If so, you may be a great fit for our Technology Compliance team!
About This Role:
In this role you will directly manage a team responsible for executing on and delivering Workday’s key technology compliance programs, including SOC1, SOC2, ISO27001, and more. You will also play a critical role in managing compliance related interactions with Workday's customers and advising internal business stakeholders on risk and compliance requirements related to the product development lifecycle and other strategic organizational initiatives.
What Does the Enterprise Technology Compliance Team Do?
Our team is responsible for building and managing programs designed to protect the confidentiality, integrity, and availability (CIA) of our customers' most sensitive data. We ensure that company practices, policies, and processes are performed in accordance with contractual and regulatory requirements and Workday’s core values, and help represent these practices to our customers.
Skills and Experience:
10+ years of experience in an equivalent technology risk and compliance related role.
5+ years of people management experience with a proven record in professional development, leadership and mentoring. Experience directing and supervising the work of others, ability to prioritize work in a fast-paced environment.
Deep familiarity with compliance reports, certifications and standards as they relate to Software as a Service and Cloud Computing, such as SOC1 (SSAE18), SOC2, ISO27001/ISO27017/ISO27018, PCI-DSS, HIPAA, NIST CyberSecurity Framework, or other related frameworks.
Extensive experience coordinating, facilitating and managing security and compliance audits; industry-specific regulatory compliance knowledge, a plus.
Strong executive presence with the capability to speak articulately to technical and operational processes.
Successful record of implementing and improving operational processes; can drive program efficiency and high customer satisfaction.
Organized, proactive and capable of cultivating support and consensus across multiple stakeholder groups.
Demonstrated program/project management experience.
Ability to juggle multiple projects and organize time effectively.
Excellent oral and written communications skills.
CISA, CISSP, CIPP, PMP or other certifications.
Bachelor’s Degree in business, computer science, finance or related field.
Collaborate regularly with cross functional leadership to address emerging compliance requirements.
Manage compliance projects across multiple teams, including operations, security and development.
Develop individual and team skills, provide stretch opportunities to advance the team and provide career development opportunities for team members.
Accountability for the success of technology compliance audits such as SOC1, SOC2, ISO27001, and more.
Develop and implement internal policies and procedures in support of Workday's compliance initiatives.
Review new product features to determine impact to compliance programs.
Execute formal risk assessments of projects, initiatives, technologies and processes.