Join the Ocrolus rocket ship!

Ocrolus is a fintech infrastructure company that transforms documents into actionable data with over 99% accuracy. Designed to streamline document-driven workflows and automate high-stakes financial decisions, Ocrolus is trusted by leading fintechs like SoFi, LendingClub, Cross River Bank, BlueVine, Enova, and Plaid, to name a few. Powered by Artificial Intelligence and a unique human-in-the-loop data validation process, Ocrolus plugs directly into customer workflows via API, eliminating the need for manual data work. Ocrolus has raised over $50 million in venture capital, backed by Oak HC/FT, FinTech Collective, Bullpen Capital, and QED Investors, among others. 

We pride ourselves on being a dynamic, diverse team, unified by shared values of Ownership, Optimism, Objectivity, Humility, Urgency, and Appreciation. We love what we do and the people we do it with, which is why we invite our team to bring their full selves to work every day.

We’re looking for a Security Compliance Manager to assist in maturing our security controls framework for Ocrolus SaaS products and services. We are looking for a self-starter who will suggest and drive implementation of best practice solutions customized for Ocrolus fast-paced environment to ensure compliance with customer and regulatory requirements. 

Responsibilities

• Continue improving and expanding our common controls framework, to address additional industry frameworks and regulations
• Identify areas for improvements and efficiencies in the execution and testing strategies
• Conduct gap assessments against security and privacy frameworks, regulations, and best practices
• Develop security risk assessment methodology and conduct security risk assessments
• Oversee the compliance testing program for security controls, including testing controls as necessary
• Communicate with and present to Senior Management on progress and testing results
• Work closely with all engineering and product teams in the US and India, to ensure consistent and practical implementation of requirements for the Ocrolus infrastructure
• Maintain security policies
• Keeping abreast of best practice and framework changes, new regulations and internal policy changes in order to further identify new key risk areas, and analyze their applicability to Ocrolus 
• Help develop technology solutions to support the various Compliance programs
• Manage audits and other reviews, working with external and internal parties 

Requirements

• Minimum 5-8 years of experience in a similar role
• Demonstrated practical experience implementing processes and control frameworks such as SOC 2, ISO 27001 and NIST CSF; PCI DSS and HIPAA experience welcome
• Practical experience implementing security controls to address requirements of privacy regulations, including GDPR, CCPA, and other international regulations
• Experience testing of security controls, overseeing testing progress and developing test plans
• Experience and familiarity with cloud data security and working with public cloud solutions (AWS)Internal and/or external IT audit experience, preferably working for a large recognized public accounting or financial services company
• Strong project management skills
• Practical experience communicating with various stakeholders effectively across the organization, especially technical teams
• Ability to prioritize identified areas for improvement and propose practical solutions based on best practices taking into account the size, maturity and nature of Ocrolus services 
• Ability to work in a remote environment with teams in India and in the United States
• Experience documenting policies and proceduresHigh attention to detail and analytical skills
• Ability to travel to our centers in Gurgaon (Haryana), Noida (Uttar Pradesh) and Jaipur (Rajasthan) 
• Excellent verbal and written communication skills (in English)

Our employees are incredible individuals - that’s the only kind we hire - and we’re committed to their well-being and supporting their efforts to become the best they can be, both at work and in life. This includes offering flexible working hours, unlimited PTO, Summer Fridays, an inclusive work environment (D&I Council), and wellness reimbursement for physical and mental well-being. 

We’re growing rapidly and were recently named #1 Fastest-Growing Fintech Company on the Inc. 5000, and #1 Fastest-Growing Software Company in NY in Deloitte’s Technology Fast 500. If you have ever wanted to jump on a rocket ship as it’s taking off, now is your chance!

Ocrolus is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.