Key skills
CloudAIAgileProject ManagementCommunicationCollaborationRemote WorkNetwork Security
About this role
Role Overview
- Promote and foster a culture of trust within and outside of Dropbox
- Partner with teams to execute on cross-team and/or multi-phase projects from design through implementation against a wide variety of regulatory and compliance frameworks, especially AI-specific standards/frameworks
- Identify the right solutions to clarify and solve ambiguous, open-ended problems across various compliance programs.
- Mature our overall compliance program. Improve and implement controls for internal systems, processes, and policies through bold and innovative approaches and leveraging automation and AI-enabled processes
- Facilitate ongoing AI Governance, Risk and Compliance initiatives and monitor control effectiveness
- Collaborate with internal teams and external auditors throughout compliance assessments
- Play an active part in responding and mitigating compliance challenges across multiple time zones and jurisdictions.
- Drive automation efforts across the Compliance function via the AI-enabled GRC automation tools
- Identify opportunities impacting the Compliance function and establish the strategy and cross-functional alignment to achieve these objectives.
- Conduct gap assessments to identify areas of non-compliance or areas for improvement, and develop action plans to address these gaps.
- Provide guidance to management on the impact of new laws and regulations and recommend changes in business practices where necessary
Requirements
- 4+ years of experience building or maintaining programs to mitigate risks around security,
- confidentiality, integrity, availability, and privacy
- Independently executes and manages projects with high-level direction from a manager
- Consistently utilize AI tools to enhance workflows, evaluate outputs with critical judgment, and help others adopt tools where appropriate.
- Experience facilitating or being the subject of SOC, ISO, HIPAA and/or PCI audits at a fast-paced technology company, public accounting firm, or similar environment
- Experience partnering with Engineering, Product & Development teams to define compliance needs in a multi-product environment
- Moderate familiarity with a broad range of technical concepts relevant to cloud computing environments: logical access control, agile development process, secure coding principles, security architecture, information security, network security, and privacy
- Experience with implementing compliance programs for emerging new products, including AI enabled products
- Moderate understanding of cloud-based technologies and their implications for governance, risk, and compliance, with a focus on AI compliance needs
- Strong project management and organizational skills
- must drive your own projects to completion with high-level direction from a manager, while also fostering collaboration and bringing teams together to achieve common objectives.
- Great people skills and ability to work well in fast paced team environment with a wide range of technical and non-technical teams
- Excellent writing, communication, and organizational skills
- strong attention to detail
- Passion to aim higher and develop new skills
- CISA, CISSP, CCSK, CIPP, or other professional certifications/associations required
Tech Stack
- Cloud
Benefits
- Health insurance
- 401(k) matching
- Flexible work hours
- Paid time off
- Remote work options