Every application is reviewed by a member of our team, no AI filters, no automated screenings. Just real people looking for real potential.The Security Compliance Specialist will play a key role in developing, maintaining, and enhancing New Charter Technologies' security and compliance programs. This role will focus on building a global privacy program, providing oversight during mergers & acquisitions (M&A), and managing third-party vendor compliance. The ideal candidate will be comfortable operating in a fast-paced MSP environment, balancing internal security needs with client and regulatory expectations, and serving as a trusted advisor across the organization.
Primary ResponsibilitiesCompliance & Regulatory Oversight- Ensure adherence to regulatory and industry standards relevant to clients (e.g., HIPAA, PCI-DSS, SOC 2, CMMC, GDPR, NIST CSF, ISO 27001).
- Support client compliance initiatives by providing expertise, documentation, and remediation strategies.
- Lead internal compliance reviews, risk assessments, and readiness checks for audits and certifications.
Policy & Documentation- Develop, implement, and maintain security compliance policies, standards, and procedures for both internal operations and client environments.
- Maintain audit-ready documentation and evidence for internal and client-facing compliance programs.
- Support contract and vendor compliance reviews, including responding to client security questionnaires.
Risk & Incident Management- Partner with security and service delivery teams to identify, assess, and mitigate compliance risks.
- Track remediation efforts and ensure corrective actions are implemented and verified.
- Provide compliance guidance during incident response to ensure regulatory reporting obligations are met.
Global Privacy Program- Design, implement, and manage a global privacy program that ensures compliance with data protection laws and regulations (e.g., GDPR, CCPA, HIPAA, PIPEDA, LGPD).
- Develop and maintain privacy policies, data handling procedures, and cross-border data transfer frameworks.
- Conduct regular privacy impact assessments (PIAs) and data protection impact assessments (DPIAs).
- Provide training and awareness programs to staff and stakeholders regarding data privacy obligations.
- Monitor evolving privacy legislation worldwide and advise leadership on compliance strategies.
Mergers & Acquisitions Oversight- Lead security and compliance due diligence activities during M&A processes.
- Assess security posture, privacy risks, and regulatory compliance of target companies.
- Develop integration plans for aligning acquired entities with New Charter's compliance frameworks.
- Partner with legal, finance, and IT teams to identify risks and ensure smooth transitions.
- Provide compliance reports and recommendations to senior leadership during acquisition evaluations.
Third-Party Vendor Risk Management- Establish and maintain a third-party vendor risk management program.
- Conduct due diligence, risk assessments, and ongoing monitoring of vendors handling sensitive data or providing critical services.
- Review and negotiate vendor security and privacy provisions in contracts.
- Develop processes for continuous vendor oversight, including periodic reassessments.
- Act as the primary point of contact for third-party security and compliance inquiries.
Qualifications- Bachelor's degree in Information Security, IT Management, Business, Law, or related field (or equivalent experience).
- 5+ years of experience in security compliance, privacy, or risk management, ideally within an MSP, SaaS, or multi-client environment.
- In-depth knowledge of global data privacy regulations (GDPR, CCPA, HIPAA, etc.).
- Experience with M&A due diligence and post-acquisition integration.
- Strong background in third-party/vendor risk management.
- Familiarity with common security frameworks (ISO 27001, NIST CSF, SOC 2, PCI-DSS, CMMC).
- Excellent written and verbal communication skills, including the ability to explain compliance requirements to technical and non-technical audiences.
- Relevant certifications (e.g., CIPP/E, CIPM, CISA, CISM, CISSP, ISO 27001 Lead Auditor) strongly preferred.
- Salary expected to start at $150,000 a year and up dependent on experience.
Who We are: At New Charter, we're building a caliber of business the IT industry hasn't yet seen. We are Serving small-to-medium sized businesses in 10+ industries across North America, and we deliver best-in-class technology solutions to propel our clients into the digital world.
At New Charter Technologies, we're investing in our people - through growth and learning initiatives, employee benefits, company innovation, and more. We are constantly seeking a diverse candidate backgrounds and perspectives to amplify inclusive hiring practices for each job opening. Our partner companies have career paths for many different role types, whether you want to be deeply technical or whiteboarding with clients, and we are committed to developing fulfilling career paths for all contributors at New Charter Technologies. (Please note: Every application submitted through Workday is reviewed by a real person, not an AI. We value your time and take each submission seriously.)
Our teams are dedicated to pioneering breakthrough technologies, disruptive solutions, and transformative strategies. We're the architects of change, fostering an environment where bold ideas take flight, and creativity knows no bounds. At New Charter Technologies, we've embraced the idea that every individual brings something special to the table. Our foundation is based on the belief that each team member plays a crucial role in our collective success.
Ready to be part of a dynamic and supportive community where your unique skills and personality shine? We're on a mission to make a difference, and we want you to be part of the story. Let's transform the world together and build a career that's as unique as you are!
We are looking for driven and passionate people who are excited to work in an incredibly rewarding environment. So, if you are ready to learn, be inspired, solve problems, and grow professionally, apply today! Learn more here: Why New Charter.
New Charter Technologies is committed to creating an inclusive environment and is proud to be an equal opportunity employer. New Charter recruits, employs, trains, compensates, and promotes regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.
