Post Jobs

Analyst, Privacy & Compliance (Remote)

Full Time

Website ezCater

ezCater is the most trusted provider of corporate food solutions – a $300+ billion market in the US alone. ezCater is purpose-built for business. ezCater’s corporate food platform and flexible, scalable food solutions allow organizations to centralize and track their food spend, and fulfill everything from daily employee meals to client meetings and company all-hands. ezCater backs this up with business-grade, best-in-class, customer service and an unmatched nationwide footprint. We’re backed by top investors including Insight, Iconiq, Lightspeed, GIC, SoftBank, and Quadrille, and had an up-round in December of 2021 when we were valued at $1.6 billion.
ezCater is the world’s largest online marketplace for catering  – a $60+ billion market in the U.S. We make it superbly easy for business people to find and order great food for meetings and events, and we help our catering partners grow their business. We’re backed by $320 million in venture funding and in early 2019 were valued at $1.25 billion. Our mission is to power the world’s catering, and we’ll make it happen – even more surely if you come help us.
At ezCater, we are building a new type of Governance, Risk, and Compliance (GRC) function. A program that starts with first principles and looks for high leverage points to meaningfully reduce risk. This role is a blend of security compliance, helping us improve our security, privacy, protecting the trust of our customer’s catering partners, and risk management helping us make more intelligent business decisions. In this role, you will report to the Director of Security and work closely with the security engineering team helping implement safeguards, the legal team ensuring that we are making durable decisions on privacy, and other engineering functions to ensure we are protecting ezCater’s assets appropriately.
We are a rapidly growing company and looking for talented individuals who are excited about implementing scalable and durable compliance, privacy, and risk management solutions.

What You’ll Do:

  • Drive the identification, implementation, and improvement of the organizational privacy strategy, framework, and standards
  • Assist in managing the development of policies, control framework, and procedures in line with our security standards
  • Watch for new regulations periodically brief management on the state of our privacy & compliance posture e.g. CPRA
  • Develop and implement processes to identify and address evolving privacy & security risks inherent in our operations
  • Provide “privacy by design” counseling to cross-functional teams for new products and initiatives
  • Automate and administer a process for receiving, documenting, tracking, investigating, and acting on all DSAR request working closely with our legal counsel when necessary
  • Develop and maintain risk and compliance dashboards to objectively demonstrate our posture
  • Execute risk assessment and continuous compliance monitoring (auditing) of security controls along with automating evidence collection
  • Perform assessments of Third-Party services providers, including cloud services, for adherence to best practices
  • Develop customized annual security training that is aligned with security standards and company culture
  • Support sales in customer security inquiries and assessments

What You Have:

  • 2+ years of experience in privacy regulations with experience applying them to high growth technology companies
  • 2+ years of experience managing security compliance programs and monitoring, with specific emphasis on SOC 2 Type 2, NIST, etc
  • 2+ years of experience implementing and running risk and security governance functions
  • Worked with industry best practices for Cloud security (e.g. CSA Security Trust Assurance and Risk, CIS Benchmarks, NIST Framework)
  • Experience in vendor management lifecycle, security vendor due diligence
  • Experience automating DSAR request responses
  • Experience automating security control evidence collection and implementing frameworks such as  “Compliance as Code”
  • Experience Scripting in languages like Python or Go is a plus
Let us apply for you (from 10$)

To apply for this job please visit jobs.lever.co.