Senior Compliance Manager

HackerOne is the global leader in human-powered security, harnessing the creativity of the world's largest community of security researchers with cutting-edge AI to protect your digital assets. The HackerOne Platform combines the expertise of our elite community and the most up-to-date vulnerability database to pinpoint critical security flaws across your attack surface. Our integrated solutions, including bug bounty, pentesting, code security audits, spot checks, and AI red teaming, ensure continuous vulnerability discovery and management throughout the software development lifecycle. Trusted by industry leaders such as Coinbase, General Motors, GitHub, Goldman Sachs, Hyatt, PayPal, and the U.S. Department of Defense, HackerOne was named a Best Workplace for Innovators by Fast Company in 2023 and a Most Loved Workplace for Young Professionals in 2024.

HackerOne Values

HackerOne is dedicated to fostering a strong and inclusive culture. HackerOne is Customer Obsessed and prioritizes customer outcomes in our decisions and actions. We Default to Disclosure by operating with transparency and integrity, ensuring trust and accountability. Employees, researchers, customers, and partners Win Together by fostering empowerment, inclusion, respect, and accountability.

We are seeking a highly skilled Senior Compliance Manager to join our CISO organization. In this role, you will work within a team to drive the execution and maintenance of HackerOne's security and privacy compliance programs, ensuring alignment with industry standards and regulatory requirements. You will partner cross-functionally with Security, Legal, Engineering, IT, and other key stakeholders to maintain compliance frameworks, lead audit readiness, and continuously improve our governance practices.

This is an individual contributor role with significant visibility and influence across the business.

At HackerOne, we embrace a Flexible Work approach, enabling our team members to work remotely while maintaining productivity and collaboration. We are seeking candidates located in Seattle, WA; San Francisco Bay Area; Austin, TX; or Washington, DC; and the surrounding metropolitan areas to facilitate occasional in-person interactions as needed. While the position is primarily remote, there will be periodic in-person requirements to support team collaboration and foster stronger connections. This approach ensures flexibility while providing opportunities to build meaningful in-person relationships that strengthen our team and company culture.

• Lead the execution and continuous improvement of HackerOne's security and privacy compliance programs (FedRAMP, SOC 2, ISO 27001, GDPR, and others).

• Own compliance frameworks and related documentation, policies, and procedures, ensuring they reflect the evolving risk and regulatory landscape.

• Prepare for and lead third-party audits and assessments, coordinating stakeholders across multiple functions.

• Manage internal audit cycles and gap assessments; track remediation efforts and ensure timely completion.

• Monitor regulatory developments and industry trends, advising leadership on emerging compliance risks and opportunities.

• Develop and deliver training and awareness programs to drive understanding and adoption of compliance practices across the company.

• Partner with Legal, Privacy, and Security teams to respond to customer security and compliance inquiries.

• Maintain up-to-date knowledge of international standards, certifications, and frameworks relevant to HackerOne's operations.

• 8+ years of professional experience, with 5+ years in security, privacy, and/or compliance roles.

• Strong experience with security and privacy compliance frameworks (e.g., SOC 2, ISO 27001, GDPR, FedRAMP).

• Demonstrated success in managing external audits and internal assessments.

• Strong project management and organizational skills; ability to manage multiple initiatives simultaneously.

• Ability to translate complex regulatory and technical concepts into actionable guidance for diverse stakeholders.

• Strong written and verbal communication skills, with attention to detail and precision.

• Bachelors and/or Masters degree in a related field

• Prior experience with FedRAMP ATO & ConMon

• Experience building out compliance functions in prior roles

• Privacy certifications (CIPP, CIPM, CIPT, etc)

• Security certifications (CISA, CISSP, etc)

• Prior experience with compliance frameworks in an AI driven environment

Compensation Bands:
Tier Guide

• Tier A $136K - $170K * Offers Equity

• Tier B $126K - $153K * Offers Equity

• Tier C $115K - $144K * Offers Equity

#LI-Remote

#LI-KM1

• Health (medical, vision, dental), life, and disability insurance*

• Equity stock options

• Retirement plans

• Paid public holidays and unlimited PTO

• Paid maternity and parental leave

• Leaves of absence (including caregiver leave and leave under CO's Healthy Families and Workplaces Act)

• Employee Assistance Program

• Flexible Work Stipend

*Eligibility may differ by country

We're committed to building a global team! For certain roles outside the United States, U.K., and the Netherlands, we partner with Remote.com as our Employer of Record (EOR).

Employment at HackerOne is contingent on a background check.

HackerOne is an Equal Opportunity Employer in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, pregnancy, disability or veteran status, or any other protected characteristic as outlined by international, federal, state, or local laws.

This policy applies to all HackerOne employment practices, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, and apprenticeship. HackerOne makes hiring decisions based solely on qualifications, merit, and business needs at the time.

For US based roles only: Pursuant to the San Francisco Fair Chance Ordinance, all qualified applicants with arrest and conviction records will be considered for the position.

Compensation Range: $115K - $170K