Senior Compliance Specialist
The Compliance Assurance team at HubSpot is committed to the mission of “enabling verifiable digital trust” for all of our stakeholders—including customers, investors, regulators, and employees. To achieve this, we identify and assess risks; design, build, implement and continuously monitor controls; facilitate internal and external audits; build and maintain our internal IT control environment; and stay informed on the latest frameworks and regulatory obligations. All of this work is done in alignment with the company's strategic priorities and go-to-market objectives.
We are looking for innovative, imaginative and creative IT audit, risk and compliance professionals who possess a strong understanding of IT control fundamentals and demonstrated success in leading SOX engagements. Successful candidates will join our team and contribute to the development of custom processes and solutions that specifically address the unique requirements of our organization. Our team specializes in high-impact, cross-functional projects that directly influence the security, privacy, and resilience of our critical IT and business processes. This role will require collaboration with a diverse group of stakeholders, including system owners, product managers, engineers, users, and business leaders.
In addition to a comprehensive understanding of IT control fundamentals, ideal candidates will have a proven track record of innovation and creativity in the field of IT audit, risk, and compliance. The ability to think critically and develop custom solutions that meet the specific needs of our organization will be essential for success. Excellent communication and interpersonal skills will also be required, as this role involves close collaboration with individuals from various departments and levels within the organization. Experience in managing and leading cross-functional projects is highly desirable, as is a strong understanding of the interplay between IT and business processes.
Become a part of our dynamic team of seasoned IT risk professionals and former Big 4 auditors. Our team grew tired of the formulaic IT risk and audit work and were not content to go through the motions of completing checklists, executing boilerplate testing procedures, rolling forward prior year workpapers, engaging in trivial debates over control exceptions, or merely identifying process inefficiencies without playing a role in developing a solution. We enjoy dissecting complex technical processes, understanding what risks they present, and developing solutions that provide value to our business and aren’t meant to simply check a compliance box. We are guided by the mission to develop innovative solutions that not only satisfy our legal and regulatory but also reduce the compliance burden on our employees so that they can spend less time on administrative tasks and more time doing their best work.
We're seeking individuals who share our drive to go beyond the expected, challenge the status quo, and actively contribute to building a more secure and efficient future. If you have a bias for action, thrive in autonomy and ambiguity, possess an inordinate amount of intellectual curiosity, and are passionate about developing solutions for hard problems, you'll excel on our team.
In this role, you’ll get to:
Assist in directing and orchestrating work streams related to IT SOX compliance, including planning, scoping, risk assessment, testing enablement, and issue management.
Help develop, implement, and maintain IT standards, procedures, stakeholder guidance, and tailored control recommendations to ensure adherence to SOX requirements and best practices.
Maintain and update SOX documentation, including risk control matrices, process narratives, and flowcharts.
Participate in system development, acquisition, and implementation projects and advise stakeholders on the design and implementation of internal controls to address process risks and maintain adherence to compliance requirements.
Implement and manage tools and processes for the ongoing monitoring of IT controls and compliance status.
Serve as a point of contact for audit coordination, scheduling, and managing information flow between control owners and internal/external audit personnel.
Translate business and control requirements into the design of features and enhancements in our compliance tools.
Assist in escalating issues to senior management, developing and negotiating remediation plans and tracking issues to resolution.
We are looking for people who:
Have experience supporting IT SOX audit engagements and a solid understanding of SOX requirements.
Are capable of conducting IT risk assessments and developing mitigation strategies with guidance.
Possess a good understanding of IT general controls (ITGC) across security, change management, and computer operations.
Demonstrate understanding of business process and IT application controls (ITAC) related to financial reporting systems.
Possess a working knowledge of industry-standard IT frameworks and regulations (e.g. COSO, COBIT, NIST CSF, CIS, SOC (1 & 2), PCI DSS, and ISO 27001, to name a few) and ability to apply their requirements to system and process implementations.
Are knowledgeable about various operating systems, databases, networking technologies, service delivery implementations (including SaaS, IaaS, and PaaS), and modern development processes.
Are highly organized, have strong attention to detail.
Are comfortable multi-tasking and performing multifaceted projects.
Have good oral and written communication skills.
Are a good collaborator and possess the ability to form partnerships with key stakeholders.
Demonstrate a continuous learning mindset.
Are comfortable taking initiative and accepting responsibility for assigned tasks with some supervision.
Are service-oriented.
Have 4-6 years of technical IT audit and/or advisory experience.
Have experience in assisting with scoping, planning and executing audits and projects.
Experience in mentoring junior IT audit or compliance staff is a plus.
Have a CISA, CIA, CPA or equivalent professional qualification (or are in progress).
Cash compensation range: 104800-157200 USD Annually This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy. The cash compensation above includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are based on a few different factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons. We know that benefits are also an important piece of your total compensation package. To learn more about what’s included in total compensation, check out some of the benefits and perks HubSpot offers to help employees grow better. At HubSpot, fair compensation practices isn’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
-
Cash compensation range: 104800-157200 USD Annually This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy. The cash compensation above includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are based on a few different factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons. We know that benefits are also an important piece of your total compensation package. To learn more about what’s included in total compensation, check out some of the benefits and perks HubSpot offers to help employees grow better. At HubSpot, fair compensation practices isn’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range
$108,500—$173,600 USD
About the job
Apply for this position
Senior Compliance Specialist
The Compliance Assurance team at HubSpot is committed to the mission of “enabling verifiable digital trust” for all of our stakeholders—including customers, investors, regulators, and employees. To achieve this, we identify and assess risks; design, build, implement and continuously monitor controls; facilitate internal and external audits; build and maintain our internal IT control environment; and stay informed on the latest frameworks and regulatory obligations. All of this work is done in alignment with the company's strategic priorities and go-to-market objectives.
We are looking for innovative, imaginative and creative IT audit, risk and compliance professionals who possess a strong understanding of IT control fundamentals and demonstrated success in leading SOX engagements. Successful candidates will join our team and contribute to the development of custom processes and solutions that specifically address the unique requirements of our organization. Our team specializes in high-impact, cross-functional projects that directly influence the security, privacy, and resilience of our critical IT and business processes. This role will require collaboration with a diverse group of stakeholders, including system owners, product managers, engineers, users, and business leaders.
In addition to a comprehensive understanding of IT control fundamentals, ideal candidates will have a proven track record of innovation and creativity in the field of IT audit, risk, and compliance. The ability to think critically and develop custom solutions that meet the specific needs of our organization will be essential for success. Excellent communication and interpersonal skills will also be required, as this role involves close collaboration with individuals from various departments and levels within the organization. Experience in managing and leading cross-functional projects is highly desirable, as is a strong understanding of the interplay between IT and business processes.
Become a part of our dynamic team of seasoned IT risk professionals and former Big 4 auditors. Our team grew tired of the formulaic IT risk and audit work and were not content to go through the motions of completing checklists, executing boilerplate testing procedures, rolling forward prior year workpapers, engaging in trivial debates over control exceptions, or merely identifying process inefficiencies without playing a role in developing a solution. We enjoy dissecting complex technical processes, understanding what risks they present, and developing solutions that provide value to our business and aren’t meant to simply check a compliance box. We are guided by the mission to develop innovative solutions that not only satisfy our legal and regulatory but also reduce the compliance burden on our employees so that they can spend less time on administrative tasks and more time doing their best work.
We're seeking individuals who share our drive to go beyond the expected, challenge the status quo, and actively contribute to building a more secure and efficient future. If you have a bias for action, thrive in autonomy and ambiguity, possess an inordinate amount of intellectual curiosity, and are passionate about developing solutions for hard problems, you'll excel on our team.
In this role, you’ll get to:
Assist in directing and orchestrating work streams related to IT SOX compliance, including planning, scoping, risk assessment, testing enablement, and issue management.
Help develop, implement, and maintain IT standards, procedures, stakeholder guidance, and tailored control recommendations to ensure adherence to SOX requirements and best practices.
Maintain and update SOX documentation, including risk control matrices, process narratives, and flowcharts.
Participate in system development, acquisition, and implementation projects and advise stakeholders on the design and implementation of internal controls to address process risks and maintain adherence to compliance requirements.
Implement and manage tools and processes for the ongoing monitoring of IT controls and compliance status.
Serve as a point of contact for audit coordination, scheduling, and managing information flow between control owners and internal/external audit personnel.
Translate business and control requirements into the design of features and enhancements in our compliance tools.
Assist in escalating issues to senior management, developing and negotiating remediation plans and tracking issues to resolution.
We are looking for people who:
Have experience supporting IT SOX audit engagements and a solid understanding of SOX requirements.
Are capable of conducting IT risk assessments and developing mitigation strategies with guidance.
Possess a good understanding of IT general controls (ITGC) across security, change management, and computer operations.
Demonstrate understanding of business process and IT application controls (ITAC) related to financial reporting systems.
Possess a working knowledge of industry-standard IT frameworks and regulations (e.g. COSO, COBIT, NIST CSF, CIS, SOC (1 & 2), PCI DSS, and ISO 27001, to name a few) and ability to apply their requirements to system and process implementations.
Are knowledgeable about various operating systems, databases, networking technologies, service delivery implementations (including SaaS, IaaS, and PaaS), and modern development processes.
Are highly organized, have strong attention to detail.
Are comfortable multi-tasking and performing multifaceted projects.
Have good oral and written communication skills.
Are a good collaborator and possess the ability to form partnerships with key stakeholders.
Demonstrate a continuous learning mindset.
Are comfortable taking initiative and accepting responsibility for assigned tasks with some supervision.
Are service-oriented.
Have 4-6 years of technical IT audit and/or advisory experience.
Have experience in assisting with scoping, planning and executing audits and projects.
Experience in mentoring junior IT audit or compliance staff is a plus.
Have a CISA, CIA, CPA or equivalent professional qualification (or are in progress).
Cash compensation range: 104800-157200 USD Annually This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy. The cash compensation above includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are based on a few different factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons. We know that benefits are also an important piece of your total compensation package. To learn more about what’s included in total compensation, check out some of the benefits and perks HubSpot offers to help employees grow better. At HubSpot, fair compensation practices isn’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
-
Cash compensation range: 104800-157200 USD Annually This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy. The cash compensation above includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are based on a few different factors unique to each candidate, including their skills, experience, qualifications and other job-related reasons. We know that benefits are also an important piece of your total compensation package. To learn more about what’s included in total compensation, check out some of the benefits and perks HubSpot offers to help employees grow better. At HubSpot, fair compensation practices isn’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range
$108,500—$173,600 USD