Celigo logo

Celigo

Get a demo Try for free
Get a demo

Celigo Careers

Compliance Team Lead

US

 

Integration meets Innovation

At Celigo, we believe integration should empower — not exhaust — innovation. As a modern Integration and Automation Platform (iPaaS), we’re on a mission to simplify how companies integrate, automate, and optimize processes. Powered by game-changing technology like runtime AI and prebuilt, mission-critical integrations, Celigo is redefining how businesses connect their world.

The Compliance Team Lead is an individual contributor role positioned at the emerging lead level, designed to own the day-to-day execution of Celigo’s security compliance and risk operations. This role enables the Senior Director to operate strategically by taking ownership of core compliance workstreams: SOC 2 audit coordination, privacy rights fulfillment, policy governance, third-party risk assessments, and security questionnaire responses.

A significant focus of this role will be supporting Celigo’s ISO 27001 and ISO 42001 certification initiative. Under the direction of the Senior Director, this role will partner with an external advisory firm to build Celigo’s integrated Information Security Management System (ISMS) and Artificial Intelligence Management System (AIMS) and will then own the ongoing management, maintenance, and operationalization of those management systems post-certification. This role also provides task-level guidance to the Security Risk & Compliance Analyst and supports their professional development. Both roles report directly to the Senior Director, Information Security & Compliance.

What would you do if hired?

SOC 2 Audit Readiness & Compliance Operations

  • Lead day-to-day SOC 2 Type II audit activities, including evidence collection, artifact management, control testing coordination, and auditor liaison for both the Integrator.io and CloudExtend platforms
  • Maintain the compliance calendar and ensure all control activities, access reviews, training attestations, and evidence requirements are completed on schedule
  • Oversee the administration of the KnowBe4 policy attestation platform; track completion rates and follow up on outstanding attestations to support audit evidence requirements
  • Lead the coordination and tracking of compliance evidence requirements across business units; document gaps and escalate to the Senior Director
  • Maintain and update the Celigo Risk Register, including open risk items, remediation timelines, and status

ISO 27001 & ISO 42001 Program Build and Management

  • Serve as a primary internal resource supporting the build of Celigo’s ISO 27001 ISMS and ISO 42001 AIMS under the leadership of the Senior Director and in partnership with an external advisory firm
  • Contribute to gap assessments, control mapping, documentation development, and stakeholder interviews as part of the certification readiness program
  • Own the ongoing management and operationalization of the ISMS and AIMS post-certification, including management reviews, internal audit coordination, control monitoring, and annual recertification preparation
  • Maintain ISMS and AIMS documentation, ensuring policies, procedures, and evidence repositories remain current and audit-ready
  • Serve as the internal subject matter resource for ISO 27001 and ISO 42001 requirements as Celigo’s program matures

Privacy, DSAR & Regulatory Compliance

  • Handle Data Subject Access Requests (DSARs) in compliance with GDPR, UK GDPR, CCPA, and other applicable privacy regulations; maintain response logs and ensure timely fulfillment within regulatory deadlines
  • Support privacy compliance activities, including PIA coordination for new AI tools, DPA review, and regulatory change tracking
  • Monitor emerging regulatory requirements relevant to Celigo’s operating environment, including the Colorado AI Act and other applicable frameworks

Third-Party Risk Management

  • Execute third-party vendor risk assessments in alignment with Celigo’s tiered risk framework; review SOC 2 reports, security questionnaires, and DPAs for material gaps
  • Maintain the vendor inventory and ensure all assessments are completed within the required cadences
  • Lead security review intake for new AI tools and OAuth-connected applications; flag findings and escalate to the Senior Director

Policy Governance & Documentation

  • Own Celigo’s security and privacy policy library, managing annual review cycles, stakeholder coordination, tracked-change workflows, and version control
  • Identify gaps between policy requirements and current operational practice; develop remediation tracking and monitor progress
  • Maintain compliance documentation repositories (Wiki, Google Drive) and ensure accuracy and accessibility of all compliance artifacts

Customer-Facing Security & Team Coordination

  • Lead responses to client and prospect security, privacy, and compliance questionnaires; coordinate with the Security Risk & Compliance Analyst on intake and response workflows
  • Provide day-to-day task guidance, work assignments, and professional development support to the Security Risk & Compliance Analyst
  • Serve as the primary cross-functional point of contact for compliance inquiries from IT, Engineering, HR, Legal, and Finance
Who are we looking for?

Skills & Abilities

  • Demonstrated ability to manage multiple concurrent compliance workstreams with competing deadlines and limited oversight
  • Working knowledge of SOC 2 Trust Services Criteria and audit evidence requirements; experience owning evidence collection for at least one full audit cycle
  • Foundational understanding of ISO 27001 requirements; exposure to ISMS implementation or gap assessment work is strongly preferred
  • Familiarity with privacy regulations, including GDPR, HIPAA, CCPA, and US state privacy laws; experience handling DSARs is a plus
  • Ability to review vendor security documentation, including SOC 2 reports, DPAs, and security questionnaires, and identify material risk gaps
  • Strong written communication skills; ability to draft policy language, compliance documentation, and client-facing security responses
  • Comfortable working cross-functionally with Engineering, IT, Legal, and Finance stakeholders
  • Ability to provide constructive task guidance to a junior team member
  • Self-directed with strong organizational skills; ability to operate effectively with minimal supervision
  • Proficient in the responsible use of AI tools (e.g., Claude, ChatGPT) to improve the efficiency and quality of compliance work; ability to identify recurring compliance tasks and develop AI-assisted workflows, prompts, and automation projects that reduce manual effort and improve program scalability

Education & Experience 

  • 3–5 years of experience in information security, GRC, compliance, privacy, or audit functions
  • Hands-on experience with SOC 2 audit cycles, including evidence preparation and auditor coordination
  • Experience in auditing a SaaS company, preferably with multi-tenant architecture
  • Experience with security policy development, review cycles, and stakeholder management
  • Familiarity with third-party risk assessment programs and vendor security review processes
  • Experience with GRC or compliance documentation platforms (e.g., Vanta, Drata, Confluence, or equivalent)
  • Exposure to ISO 27001 framework requirements preferred; ISO 42001 familiarity is a plus
  • Relevant certifications preferred but not required: CISA, CRISC, CIPM, CISSP, or equivalent

Celigo reasonably expects to pay a base salary between $100,000 and $125,000 per year for this position. Actual starting base pay will be determined by skills, experience, geographic location, and other non-discriminatory factors permitted by law. Total compensation may also include variable incentives, benefits, or other perks as outlined in any formal employment offer made.

Celigo is proud to be

  • A 2025 Gartner Customers’ Choice for iPaaS. The only vendor to receive this award.
  • Celigo is a Visionary in the Gartner Magic Quadrant for iPaaS for the second consecutive year
  • Celigo is ranked #1 iPaaS on G2 for multiple quarters and named a Leader in both B2B/EDI and API Management.
  • Celigo is a leading intelligent automation platform that puts the power of automation in the hands of every team, unifying workflows from the predictable to the fully agentic in a single platform.

Here you'll experience

  • Remote-first culture, built on trust, collaboration, and transparency
  • A high-growth, inclusive work environment where innovation thrives and ideas are implemented
  • Lightspeed learning opportunities to keep you at the leading edge of your field
  • Exceptional coworkers who challenge and inspire you daily
  • Competitive compensation and benefits, including:
    • Three weeks of vacation (starting year one)
    • Wellness days and holidays to recharge
    • Parental leave and a generous benefits package
    • Monthly tech stipend
    • Recognition and career development opportunities

Diversity, Equity, Inclusion, and Accessibility

As a company, one of the values we hold most dear is fostering a safe, collaborative environment to bring out the best in us, so we created our Taking a Stand Initiative. Our TAS initiative is a volunteer committee open to all Celigans, with representation from underrepresented voices within our company. We believe, unequivocally, that everyone deserves to be in a place where they feel welcome as they are. Learn more about Taking a Stand.

Celigo is proud to be an equal-opportunity workplace. We are committed to equal employment opportunities regardless of race, color, ancestry, national origin, religion, creed, age, disability, sex, gender, sexual orientation, gender identity, gender expression, medical condition, genetic information, marital status, military and veteran status, or any other characteristic protected by applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements.

 

#LI-AL1

Apply Now