Senior Security Compliance Manager

Company OverviewDocusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people's lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign's Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM).What you'll doThe Senior Security Compliance Manager is responsible for maintaining and managing new and ongoing Docusign security commercial certification audits and self-assessments. These include but are not limited to ISO 27001, 27017, 27018, PCI-DSS 4.0, IRAP, APEC PRP, C5, ISMAP, FISC, SIG, and CSA STAR etc. The Senior Security Compliance Manager will be responsible for building scalable and efficient processes related to supporting the APAC region and overall security compliance programs working closely with the Compliance team in the United States. The Security Compliance Manager will monitor the security compliance landscape to identify which standards and certifications are relevant for the APAC region of the organization and translate into program actions such as performing gap analysis and remediations.The successful candidate has the auditing experience, technical expertise, and information security knowledge to plan, execute and deliver on existing and strategic new Security Compliance certifications. The successful candidate will drive the cross-functional work necessary to ensure the implementation of the management, operational and technical security controls required to be compliant with all applicable regulations and security compliance standards. They will work in close collaboration with all control owners, Product and Engineering, IT, Security, US Public Sector Compliance, Legal Product and Regulatory Compliance. This hands-on position will mature relationships with internal control owners and stakeholders globally to represent Docusign Security Compliance programs. This position is an individual contributor role reporting to the Director, Security Compliance.ResponsibilityAanalyze the security compliance landscape continuously to identify which standards and certifications are relevant for the APAC region and translate requirements into program actions such as performing gap analysis, remediations, and controls effectiveness testingLead end-to-end ANZ IRAP technical compliance with external auditors and ANZ government agencies and monitor compliance annually; This includes mapping IRAP controls to cloud-native architectures, automating evidence collection, and embedding IRAP requirements into Docusign security controls frameworkPerform security requirements mappings and develop or enhance controls to meet additional requirements; This also includes documentation of Evidence Requirements and Supplemental Guidance to support Security GRC programs and socialize to Control OwnersMaintain technical experience and knowledge in Security Domains such as Logging and Detections, and Configuration Management, Vulnerability Management, and Network SecurityImplement the use of technical controls and/or AI across security audit, certification, and compliance activities to streamline processes such as evidence automationIdentify automation opportunities and implement scalable solutions including technical and monitoring controls that integrate seamlessly with systems such as GRC platforms, cloud services, and various ticketing toolsManage and op

Created: 2026-05-02