Head of Risk and Compliance
Anonyome Labs, Inc.
Date: 17 hours ago
City: South Jordan, UT
Contract type: Full time
Anonyome Labs is creating a world in which people have exclusive control over their personal data.We’re changing the identity, privacy and cyber safety paradigm—and resolving the greatest challenges consumers and enterprises face.
Through the Sudo Platform products, we provide businesses with identity and privacy toolkits. We demonstrate these toolkits through our MySudo consumer reference applications empowering everyday users to decide when, where and with whom they share their personal information, and we help enterprises rapidly develop and deploy branded identity, privacy and cyber safety solutions for their customers.
In developing the Sudo decentralized digital identity at the heart of our products, we wanted to do something that hasn’t been done before — because that’s what the global fight for data privacy will demand from us all: out of the box thinking and privacy by design.
If you want to join us at the leading edge of data privacy, apply to join our team now. There’s never been a better time.
This is a fantastic opportunity to work at a well-established global start-up, working with global leaders in the security and privacy space.
Role
The Head of Risk and Compliance ensures Anonyome Labs remains compliant with business-critical external compliance objectives and leads the business risk management program.
Responsibilities
Data Protection and Privacy
Our Customer Trust Hinges On The Responsible Handling Of Sensitive Information, Including Regulated Personal Data. The Head Of Risk And Compliance Ensures Compliance With Data Protection Laws Like EU GDPR, U.S. State Privacy Laws Including California Consumer Privacy Act, While Implementing Best Practices For Consumer Privacy. Responsibilities Include:
From external compliance objectives to third-party vendor agreements, this role ensures compliance while minimizing risk. Specific duties include:
The Head Of Risk And Compliance Must Work Closely With Other C-suite Executives And Their Teams To Ensure An Understanding Of Risk Management And Compliance Is Present:
The Regulatory Environment And Supply Chain Of Service Providers In Which Anonyome Labs Operates Is Never Static. Compliance Today Does Not Imply Compliance In The Future:
Providing regular updates about the company’s risk posture and compliance status are essential duties. They must:
Leadership and Strategic Planning
Risk Management Strategy Design
Regulatory Compliance
Sensitive Data Handling
Crisis Management
Stakeholder Engagement
Training Development
Cross-Department Coordination
Analytical Thinking
Enhancing Privacy
Privacy is at Our Core
Growing as One team
Work Inclusively, Embrace Diversity, Succeed Together
Sharing Insights
Information empowers our decision making
Taking Ownership
Own it, enjoy it, learn from it
Feeding Curiosity
Always learning
We offer health, dental, vision & life insurance plans, unlimited PTO, cool office space, equity, catered lunches, and an exciting and innovative atmosphere. If you’re interested in changing the world, we’d love to talk to you.
Through the Sudo Platform products, we provide businesses with identity and privacy toolkits. We demonstrate these toolkits through our MySudo consumer reference applications empowering everyday users to decide when, where and with whom they share their personal information, and we help enterprises rapidly develop and deploy branded identity, privacy and cyber safety solutions for their customers.
In developing the Sudo decentralized digital identity at the heart of our products, we wanted to do something that hasn’t been done before — because that’s what the global fight for data privacy will demand from us all: out of the box thinking and privacy by design.
If you want to join us at the leading edge of data privacy, apply to join our team now. There’s never been a better time.
This is a fantastic opportunity to work at a well-established global start-up, working with global leaders in the security and privacy space.
Role
The Head of Risk and Compliance ensures Anonyome Labs remains compliant with business-critical external compliance objectives and leads the business risk management program.
Responsibilities
Data Protection and Privacy
Our Customer Trust Hinges On The Responsible Handling Of Sensitive Information, Including Regulated Personal Data. The Head Of Risk And Compliance Ensures Compliance With Data Protection Laws Like EU GDPR, U.S. State Privacy Laws Including California Consumer Privacy Act, While Implementing Best Practices For Consumer Privacy. Responsibilities Include:
- Establishing robust controls for data storage, transfer, and disposal
- Coordinating regular audits to ensure compliance with relevant data protection regulations
- Monitoring access to sensitive customer and corporate data
From external compliance objectives to third-party vendor agreements, this role ensures compliance while minimizing risk. Specific duties include:
- Driving our programs for SOC 2 certification, PCI DSS compliance, EU-U.S. Data Privacy Framework self-certification and others as determined by business need.
- Owning and maintaining disaster recovery and business continuity plans
The Head Of Risk And Compliance Must Work Closely With Other C-suite Executives And Their Teams To Ensure An Understanding Of Risk Management And Compliance Is Present:
- Partnering with the Head of Engineering and Head of Product to integrate compliance measures into systems design, implementation and operation
- Working alongside People team to ensure compliant handling of employee and candidate data
- Coordinating with internal SMEs and external legal counsel to align policies and operations with compliance regulations
The Regulatory Environment And Supply Chain Of Service Providers In Which Anonyome Labs Operates Is Never Static. Compliance Today Does Not Imply Compliance In The Future:
- Monitor changes in the regulatory environments critical to our products, including telecommunications, payments and fintech, consumer privacy, and data protection laws
- Identify product or internal improvements to reduce the risk of becoming non-compliant
Providing regular updates about the company’s risk posture and compliance status are essential duties. They must:
- Offer actionable insights to reduce risks while aligning compliance with the company's long-term goals
- Advocate for necessary budget approvals to invest in risk management and compliance initiatives
Leadership and Strategic Planning
Risk Management Strategy Design
- Ability to develop and implement a comprehensive risk management strategy that addresses current and emerging risks across business units.
- Skills to align initiatives with overall business goals and objectives, ensuring risk management measures contribute to organizational success.
Regulatory Compliance
- Familiarity with data protection laws such as EU GDPR, California Consumer Privacy Act, and industry certifications frameworks such as SOC 2, PCI DSS, and the EU-U.S. Data Privacy Framework.
- Ability to conduct risk assessments of internal systems and third-party vendors to identify and mitigate vulnerabilities.
- Competence in creating robust disaster recovery and business continuity plans.
Sensitive Data Handling
- Design strict controls for data storage, access, transfer, and disposal to ensure the integrity of sensitive customer and corporate information.
- Advocate for user privacy by adopting and enforcing best practices for data protection.
Crisis Management
- Experience leading incident response efforts to evaluate breaches, assess damage, and communicate with stakeholders like customers and regulatory bodies
- Ability to supervise reviews after cybersecurity incidents and ensure lessons are applied to future defenses
Stakeholder Engagement
- Strong communication skills to prepare and deliver detailed reports to stakeholders
- Ability to secure budget approval for critical risk and compliance initiatives
Training Development
- Develop and conduct employee training sessions on risk management and compliance topics such as payments compliance.
- Own the culture of shared responsibility for risk management across all departments
Cross-Department Coordination
- Proficient in collaborating with Information Systems, Product, Engineering and Finance departments to ensure regulatory and external compliance where required
- Supporting Sales by reviewing contracts and agreements for compliance requirements and devising how they can be achieved
- Partner with C-suite executives to embed risk management and data protection policies into every aspect of the organization.
Analytical Thinking
- Sharp analytical skills to assess risks and the effectiveness of risk management measures.
- The ability to make sound, quick decisions.
- Resilience and adaptability in navigating the dynamic nature of the digital threat landscape.
Enhancing Privacy
Privacy is at Our Core
Growing as One team
Work Inclusively, Embrace Diversity, Succeed Together
Sharing Insights
Information empowers our decision making
Taking Ownership
Own it, enjoy it, learn from it
Feeding Curiosity
Always learning
We offer health, dental, vision & life insurance plans, unlimited PTO, cool office space, equity, catered lunches, and an exciting and innovative atmosphere. If you’re interested in changing the world, we’d love to talk to you.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resume