Director, Risk & Compliance

Introduction to Demandbase: 

Demandbase is the Smarter GTM™ company for B2B brands. We help B2B companies hit their revenue goals using fewer resources. How? By aligning their sales and marketing teams around a combination of their data, our data, and artificial intelligence — what we call Account Intelligence — so they can identify, engage, and focus their time and money on the accounts most likely to buy. 

As a company, we're as committed to growing careers as we are to building world-class technology. We invest heavily in people, our culture, and the community around us. We have offices in the San Francisco Bay Area, Seattle, and India, as well as a team in the UK, and we allow employees to work remotely. We have also been continuously recognized as one of the best places to work in the San Francisco Bay Area including "Best Workplaces for Millennials" and "Best Workplaces for Parents"!

We're committed to attracting, developing, retaining, and promoting a diverse workforce. By ensuring that every Demandbase employee is able to bring a diversity of talents to work, we're increasingly capable of living out our mission to transform how B2B goes to market. We encourage people from historically underrepresented backgrounds and all walks of life to apply. Come grow with us at Demandbase!

​​About the Role:

We are looking for a highly collaborative, pragmatic, and execution-oriented Director of Risk and Compliance to oversee our compliance (including audit) and risk programs. You will continue to develop and operationalize a right-sized risk-based framework for managing enterprise risk and monitoring, testing, and ensuring compliance with regulatory requirements and policies. You will be expected to lead a small team in monitoring, reporting and at times managing these risks in order to help control owners mitigate overall risk for the company. Additionally, you will oversee our internal audit consultants and our SOC2, ISO 270001 and any other additional audits and certifications. This role reports to the General Counsel.

The base compensation range for this role is: $201,875 - $261,250

What you’ll be doing:

• Leading and overseeing the team who lead our audit/certification program including, but not limited to SOC2 type II, ISO 27001 and SSPA 
• Identify, analyze, monitor, test, and report on controls for relevance and effectiveness
• Partner with several cross-functional teams to assign control owners, develop risk mitigation plans and at times help manage those plans to remediate risks across the business 
• Continue to develop ongoing status reports and management reporting
• Manage a team of consultants who serve as our Internal Audit function and continue to develop and scale an Internal Audit program as the business grows
• Regularly reporting to the executive team and audit committee regarding compliance and risk program status, gaps and remediation efforts
• Managing the day to day operations of the compliance and risk team
• Helping build a culture of compliance at Demandbase

What we’re looking for:

• 8+ years of experience in a Head of Compliance, GRC or ERM role.
• Highly collaborative individual to work with control owners across the organization
• Extensive knowledge leading SOC2 type II, ISO 27001, SSPA and related certifications and audits
• A deep understanding of general IT and cloud security controls, such as Information Security, Business Continuity, Disaster Recovery, Vendor Management, Software Development, Hardware and Software.
• Strong project management and organizational skills
• Experience leading teams, preferably in fast paced technology environments
• Experience with project management, ability to create short/long term plans, adhering to deadlines and setting targets for milestones
• Ability to break down highly complex compliance, risk, IA and similar jargon into easy to understand and practical guidance
• A sense of humor helps too!

The ideal candidate will have:

• Experience with Big 4, consulting, or companies in the 500 - 1000 employee range
• One or more of the following certifications: CRISC, CISA, CISSP, CISM
• Experience in SaaS, marketing technology, advertising technology or a similar industry
• Strong ability to work independently and learn new skills as necessary to be successful

Benefits:

Our benefits include options for up to 100% paid Medical and Vision premiums for employees, flexible PTO policy, no internal meeting Fridays, Modern Health mental wellness platform, and 11 paid holidays and 2 additional weeks where all Demandbase employees take off (the week of July 4th and the week of Thanksgiving). Plus 401(k), short-term/long-term disability, life insurance, and all those good things.

Our Commitment to Diversity, Equity, and Inclusion at Demandbase

At Demandbase, we believe in creating a workplace culture that values and celebrates diversity in all its forms. We recognize that everyone brings unique experiences, perspectives, and identities to the table, and we are committed to building a community where everyone feels valued, respected, and supported. Discrimination of any kind is not tolerated, and we strive to ensure that every individual has an equal opportunity to succeed and grow, regardless of their gender identity, sexual orientation, disability, race, ethnicity, background, marital status, genetic information, education level, veteran status, national origin, or any other protected status. We do not automatically disqualify applicants with criminal records and will consider each applicant on a case-by-case basis.

We also understand that women often face unique challenges pursuing careers in tech, and we believe that diversity drives innovation and growth. That's why we encourage talented women to apply for roles at Demandbase, even if they don't have all of the required skills listed in the job description. 

We acknowledge that true diversity and inclusion require ongoing effort, and we are committed to doing the work required to make our workplace a safe and equitable space for all. Join us in building a community where we can learn from each other, celebrate our differences, and work together.