Senior Manager - SOX Compliance
POS-31341
About the Role
HubSpot is seeking a Senior Manager, Security GRC to lead our Product SOX Compliance program. This role is responsible for ensuring new products and features launch in a compliant, audit-ready manner by embedding SOX considerations early in the product lifecycle and executing focused, high-risk control testing.
You will lead a team responsible for pre-Go-Live compliance vetting, high-risk SOX control testing, and remediation partnership with Product and Engineering. This role is critical to shifting HubSpot’s SOX posture from reactive remediation to proactive assurance.
What You’ll Do
Lead Product SOX Readiness
Own the SOX compliance onboarding and vetting process for new products, features, and major engineering changes.
Review and assess control design prior to Go-Live, ensuring SOX risks are identified and addressed early.
Partner closely with Product, Engineering, Finance, and Internal Audit to align on risk, controls, and launch readiness.
Manage & Develop the GRC Team
Lead and develop a team of GRC professionals focused on product compliance onboarding and control testing.
Set priorities, operating rhythms, and quality standards across the program.
Coach team members on risk-based judgment, stakeholder partnership, and execution excellence.
High-Risk & Continuous Control Testing
Oversee deep-dive testing of high-risk SOX controls, including access management, change management, and data integrity.
Ensure testing is rigorous, repeatable, and defensible to internal and external auditors.
Identify systemic control gaps and drive durable improvements.
Remediation & Audit Partnership
Partner with Product, Engineering, and Finance to drive timely remediation of control issues.
Track issues through resolution and validate corrective actions.
Serve as a key liaison for Internal and External Audit on product-related SOX matters.
Program Maturity & Scale
Define and track metrics for SOX readiness, control effectiveness, and remediation timelines.
Partner with Security Automation and Engineering teams to reduce manual testing through automation and monitoring.
Continuously evolve the program as HubSpot’s products and risk profile grow.
What We’re Looking For
Required
10-15+ years of experience in SOX, IT Compliance, Security GRC, ideally in a public-company SaaS environment.
Deep hands-on experience with SOX 404 control design, testing, issue management, and audit readiness.
Proven experience supporting product and engineering organizations.
Demonstrated people-management experience with the ability to deliver through teams.
Strong judgment, communication, and cross-functional influence skills.
Preferred
Experience with product-focused SOX or technology-heavy environments.
Familiarity with SOC 1/2, ISO 27001, ISO 42001 or NIST frameworks.
Certifications such as CISA, CRISC, CISSP, or equivalent experience.
Big 4 IT Auditing experience.
Why HubSpot
At HubSpot, security is a core value. You’ll help protect the financial integrity and operational stability of a platform used by millions of organizations while enabling teams to innovate and move fast with confidence. If you are inspired by the challenge of securing millions of organizations in their quest to “Grow Better”, this is your opportunity!
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range:
$153,800—$246,100 USD
About the job
Apply for this position
Senior Manager - SOX Compliance
POS-31341
About the Role
HubSpot is seeking a Senior Manager, Security GRC to lead our Product SOX Compliance program. This role is responsible for ensuring new products and features launch in a compliant, audit-ready manner by embedding SOX considerations early in the product lifecycle and executing focused, high-risk control testing.
You will lead a team responsible for pre-Go-Live compliance vetting, high-risk SOX control testing, and remediation partnership with Product and Engineering. This role is critical to shifting HubSpot’s SOX posture from reactive remediation to proactive assurance.
What You’ll Do
Lead Product SOX Readiness
Own the SOX compliance onboarding and vetting process for new products, features, and major engineering changes.
Review and assess control design prior to Go-Live, ensuring SOX risks are identified and addressed early.
Partner closely with Product, Engineering, Finance, and Internal Audit to align on risk, controls, and launch readiness.
Manage & Develop the GRC Team
Lead and develop a team of GRC professionals focused on product compliance onboarding and control testing.
Set priorities, operating rhythms, and quality standards across the program.
Coach team members on risk-based judgment, stakeholder partnership, and execution excellence.
High-Risk & Continuous Control Testing
Oversee deep-dive testing of high-risk SOX controls, including access management, change management, and data integrity.
Ensure testing is rigorous, repeatable, and defensible to internal and external auditors.
Identify systemic control gaps and drive durable improvements.
Remediation & Audit Partnership
Partner with Product, Engineering, and Finance to drive timely remediation of control issues.
Track issues through resolution and validate corrective actions.
Serve as a key liaison for Internal and External Audit on product-related SOX matters.
Program Maturity & Scale
Define and track metrics for SOX readiness, control effectiveness, and remediation timelines.
Partner with Security Automation and Engineering teams to reduce manual testing through automation and monitoring.
Continuously evolve the program as HubSpot’s products and risk profile grow.
What We’re Looking For
Required
10-15+ years of experience in SOX, IT Compliance, Security GRC, ideally in a public-company SaaS environment.
Deep hands-on experience with SOX 404 control design, testing, issue management, and audit readiness.
Proven experience supporting product and engineering organizations.
Demonstrated people-management experience with the ability to deliver through teams.
Strong judgment, communication, and cross-functional influence skills.
Preferred
Experience with product-focused SOX or technology-heavy environments.
Familiarity with SOC 1/2, ISO 27001, ISO 42001 or NIST frameworks.
Certifications such as CISA, CRISC, CISSP, or equivalent experience.
Big 4 IT Auditing experience.
Why HubSpot
At HubSpot, security is a core value. You’ll help protect the financial integrity and operational stability of a platform used by millions of organizations while enabling teams to innovate and move fast with confidence. If you are inspired by the challenge of securing millions of organizations in their quest to “Grow Better”, this is your opportunity!
Pay & Benefits
The cash compensation below includes base salary, on-target commission for employees in eligible roles, and annual bonus targets under HubSpot’s bonus plan for eligible roles. In addition to cash compensation, some roles are eligible to participate in HubSpot’s equity plan to receive restricted stock units (RSUs). Some roles may also be eligible for overtime pay. Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons.
This resource will help guide how we recommend thinking about the range you see. Learn more about HubSpot’s compensation philosophy.
Benefits are also an important piece of your total compensation package. Explore the benefits and perks HubSpot offers to help employees grow better.
At HubSpot, fair compensation practices aren’t just about checking off the box for legal compliance. It’s about living out our value of transparency with our employees, candidates, and community.
Annual Cash Compensation Range:
$153,800—$246,100 USD