Manager, Technology Compliance

Job Description

Role Overview The Technology Compliance group is a client-facing service designed to accelerate IT programs by aiding in the navigation and tailoring of the company s System Development Lifecycle (SDLC). The intent is to simplify compliance for IT through a risk-based approach, integrate automation and digital technology into everything we do, and establish self-service compliance tools. As a Technology Compliance Partner, you will be responsible for authoring SDLC documents and providing SDLC advice to IT colleagues regarding the practical application of the SDLC. This role is vital for IT product, engineering, and service teams to understand and implement technology and process controls to meet the company s policy and regulatory obligations. What will you do in this role: Engage with IT practitioners and acts as a consultant for the System Development Life Cycle (SDLC), Compliance Risk Profile, Digital SDLC, Good Documentation Practices and the IT Control Requirements Set including the adoption of agile ways of working. Provide compliance advice to IT colleagues regarding the practical application of the SDLC for product teams. Support efforts to reduce SDLC documentation through automation and pipeline delivery. Advance Agile SDLC competency and drive good practices for product teams. Work across product teams and initiatives as subject matter expert on the SDLC and IT compliance controls. Maintain a customer-centric focus on compliance to drive a consistent approach across IT. Author and review SDLC documentation and facilitate user testing. Assist in collecting information for Change Control and addressing impact changes for application releases. Ensures that the IT organization operates and complies with established policies/procedures. Supports audit/inspection readiness and participates in the timely review and Corrective and Preventative Action (CAPA) response. Monitors IT compliance indicators, evaluates impacts and ensures non-compliance incidents are communicated and actioned. Oversees policies, SOPs, supporting documents and associated materials to ensure seamless integration with other processes. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What should you have: Bachelors degree in Computer Science, Information Technology, Law, or a related field. 3+ years of experience in technology compliance, risk management, or a related field. Strong knowledge of data protection laws and regulations (e.g., GDPR, Annex 11). Understanding of System Development Life Cycle, good engineering practice, and computer system validation. Excellent analytical and problem-solving skills. Excellent verbal and written communication skills to convey risk findings and recommendations. Ability to communicate complex compliance issues to non-technical stakeholders. Meticulous attention to detail to ensure accurate risk assessments and reporting. Understanding of relevant regulations and compliance standards. Ability to manage risk-related projects and coordinate with various teams. Strong organizational skills to handle multiple tasks and priorities effectively.