Senior Information Security Compliance Specialist

We are looking for a Senior Compliance Specialist to join our team. Within the Information Security team, you will play a key part in Lightspeed’s continued efforts to build and maintain the high level of trust we share with our staff, retailers and consumers around the world.

You will play a key part in Lightspeed’s continued efforts to mature our ability to demonstrate our compliance state while building a healthy security culture across the organisation. In this role, you will need to keep on top of a rapidly evolving product and corporate landscape. 

 

Your day-to-day responsibilities will allow you to:

• Take a lead role in PCI and SOC2 assessments with our external auditors.
• Help establish, direct and track Lightspeed’s program for assurance against various security risks, and control frameworks. For example, SOC, PCI, NIST Cybersecurity Framework. and CAIQ.
• Ensure information security compliance obligations, both internally defined and externally regulated, are understood and met across Lightspeed.
• Work to improve our compliance program, including finding efficiencies, optimizations, etc.
• Identify greater opportunities for customer assurance across our product lines. 
• Help document and build out security policies, standards, and guidelines to support assurance initiatives and implementation of security controls.
• Serve as an escalation point for customer assurance activities in support of pre-sales and post-sales customer security inquiries, contract negotiations, and ensure accurate and timely response to customer security and privacy questionnaires.
• Engage stakeholders effectively across Lightspeed to understand threats to Lightspeed and its customers - assessing, estimating and sharing security risks.
• Work to build out other aspects of the internal governance program, with a keen eye to compliance.

 

What you need to bring:

• Significant experience with a wide range of Security and Privacy assurance frameworks, including experience with SOC 2, PCI-DSS, ISO 27001/2, etc. 
• Degree in Computer Science or Information Systems. or the equivalent experience of ten or more years in the field.
• Certifications such as CISSP, CISA and equivalents.
• Demonstrated success in delivering large, complex projects and programs.
• Excellent customer presence and internal communications skills, both written and verbal.
• Comfortable sharing hats, we’re a lean hands-on team empowering each other with a shared purpose.

To all recruitment agencies: Lightspeed does not accept unsolicited agency resumes. If we have not directly engaged your company in writing to supply candidates for a specific vacancy, Lightspeed will not be responsible for any fees related to unsolicited resumes.

Where to from here?
Obviously, this has to be mutually beneficial: we want you to step into a role you love, and we want to offer you a place you’re proud to come to every day. For a glimpse into our world check out our career page here.

Lightspeed is building communities through commerce, and we need people from all backgrounds and lived experiences to do that. We were founded in 2005, in Montreal’s gay village and our original members were all part of the LGBTQ+ community. The ethos of our business has been about inclusion from the very beginning, and we strive to provide a workplace where everyone belongs.

Who we are:
Powering the businesses that are the backbone of the global economy, Lightspeed's one-stop commerce platform helps merchants innovate to simplify, scale, and provide exceptional customer experiences. Our cloud commerce solution transforms and unifies online and physical operations, multichannel sales, expansion to new locations, global payments, financial solutions, and connection to supplier networks.

Founded in Montréal, Canada in 2005, Lightspeed is dual-listed on the New York Stock Exchange (NYSE: LSPD) and Toronto Stock Exchange (TSX: LSPD). With teams across North America, Europe, and Asia Pacific, the company serves retail, hospitality, and golf businesses in over 100 countries.