At a Glance
- Tasks: Lead security compliance and build trust in AI for customer experiences.
- Company: Join a dynamic AI company with a strong focus on customer experience.
- Benefits: Enjoy flexible time off, health benefits, and a supportive work culture.
- Other info: Diverse and inclusive environment that values your unique skills.
- Why this job: Make a real impact in AI governance while working with top industry leaders.
- Qualifications: 8+ years in security compliance with knowledge of EU regulations.
The predicted salary is between 36000 - 60000 £ per year.
At Sierra, we’re creating a platform to help businesses build better, more human customer experiences with AI. We are primarily an in‑person company based in San Francisco, with growing offices in Atlanta, New York, London, Paris, Singapore, and Japan. We are guided by a set of values that are at the core of our actions and define our culture: Trust, Customer Obsession, Craftsmanship, Intensity, and Family. These values are the foundation of our work, and we are committed to upholding them in everything we do.
What you’ll do:
- Act as a primary point of accountability for customer trust enablement, including participation in customer meetings, security reviews and AI governance.
- Contribute to AI Governance including building guardrails to align with AI regulations (EU AI Act, ISO 42001, NIST AI RMF and local EU laws).
- Partner closely with Legal and Privacy to interpret regulatory requirements and support complex, security‑sensitive contractual discussions, escalating risks and tradeoffs appropriately.
- Collaborate with Engineering and Product to ensure expectations are reflected in system design and operational effectiveness.
- Translate regulatory and privacy expectations into scalable, region‑aware technical controls across model governance, agent security and safety, and data handling.
- Own and evolve customer‑facing trust materials and narratives related to AI, privacy, and security.
- Represent Sierra in customer audits and formal assessments, clearly explaining security posture, governance decisions, and risk management approaches.
- Support resilience and response expectations as part of broader governance, with an emphasis on learning and continuous improvement.
- Continuously improve trust by identifying opportunities to streamline workflows, increase automation, and improve signal quality, while maintaining a high bar for accuracy and quality.
Who you’ll work with:
You will act as a strategic partner to Platform, Security, Product, Agent Development, Legal, and GTM, ensuring security and compliance requirements are embedded into architecture decisions, product roadmaps, and go‑to‑market execution while supporting product velocity and technical complexity.
What you’ll bring:
- 8+ years of experience in security compliance, privacy, or regulatory roles in SaaS, fintech, or AI companies.
- Deep experience with EU regulatory frameworks, including GDPR, DORA, EU AI Act and emerging AI regulations, paired with strong awareness of US and APAC regulatory norms.
- Demonstrated ability to operate globally understanding where requirements must diverge and where alignment is possible.
- Experience engaging directly with enterprise and regulated customers as a trusted representative of security, privacy, and compliance.
- Ability to translate abstract or evolving regulatory requirements into defensible, real‑world practices.
- Comfort operating in ambiguity, making reasoned judgment calls, and clearly articulating rationale and tradeoffs.
- Strong written and verbal communication skills, including close collaboration with Legal and external stakeholders.
- Direct experience preparing for or operationalizing DORA, EU AI Act or ISO/IEC 42001.
- Experience working in and/or supporting fintech or AI companies globally.
- Familiarity with AI governance frameworks such as NIST AI RMF or CSA AI controls.
- Experience navigating cross‑border data transfer, residency, and localization consideration in a multi‑cloud environment.
- Prior experience in customer‑facing, sales‑adjacent, or deal‑support contexts.
- Experience automating global security and compliance workflows.
Our values:
- Trust: We build trust with our customers with our accountability, empathy, quality, and responsiveness. We build trust in AI by making it more accessible, safe, and useful. We build trust with each other by showing up for each other professionally and personally, creating an environment that enables all of us to do our best work.
- Customer Obsession: We deeply understand our customers’ business goals and relentlessly focus on driving outcomes, not just technical milestones. Everyone at the company knows and spends time with our customers. When our customer is having an issue, we drop everything and fix it.
- Craftsmanship: We get the details right, from the words on the page to the system architecture. We have good taste. When we notice something isn’t right, we take the time to fix it. We are proud of the products we produce. We continuously self‑reflect to continuously self‑improve.
- Intensity: We know we don’t have the luxury of patience. We play to win. We care about our product being the best, and when it isn’t, we fix it. When we fail, we talk about it openly and without blame so we succeed the next time.
- Family: We know that balance and intensity are compatible, and we model it in our actions and processes. We are the best technology company for parents. We support and respect each other and celebrate each other’s personal and professional achievements.
What we offer:
- Flexible (Unlimited) Paid Time Off
- Medical, Dental, and Vision benefits for you and your family
- Life Insurance and Disability Benefits
- Retirement Plan (e.g., 401K, pension) with Sierra match
- Fertility and family building benefits through Carrot
- Lunch, as well as delicious snacks and coffee to keep you energized
- Discretionary Benefit Stipend giving people the ability to spend where it matters most
- Free alphorn lessons
These benefits are further detailed in Sierra's policies and are subject to change at any time, consistent with the terms of any applicable compensation or benefits plans. Eligible full‑time employees can participate in Sierra's equity plans subject to the terms of the applicable plans and policies.
Be you, with us:
We're working to bring the transformative power of AI to every organization in the world. To do so, it is important to us that the diversity of our employees represents the diversity of our customers. We believe that our work and culture are better when we encourage, support, and respect different skills and experiences represented within our team. We encourage you to apply even if your experience doesn’t precisely match the job description. We strive to evaluate all applicants consistently without regard to race, color, religion, gender, national origin, age, disability, veteran status, pregnancy, gender expression or identity, sexual orientation, citizenship, or any other legally protected class.
Security/Compliance Manager employer: Sierra
Sierra is an exceptional employer that values creativity and collaboration, making it an ideal place for a Brand Designer to thrive. With a strong commitment to work-life balance, we offer flexible paid time off and comprehensive medical benefits, ensuring our employees feel supported both personally and professionally. Our dynamic work culture fosters growth and innovation, providing unique opportunities to make a significant impact in the EMEA region.
StudySmarter Expert Advice🤫
We think this is how you could land Security/Compliance Manager
✨Tip Number 1
Network like a pro! Reach out to folks in your industry on LinkedIn or at events. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Prepare for interviews by researching the company culture and values. At Sierra, they value trust and customer obsession, so be ready to share how you embody these traits.
✨Tip Number 3
Practice your pitch! Be clear about your experience in security compliance and how it aligns with Sierra's mission. Confidence is key!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets noticed and shows you're serious about joining the team.
We think you need these skills to ace Security/Compliance Manager
Some tips for your application 🫡
Show Your Passion:When writing your application, let your enthusiasm for the role shine through! We want to see how much you care about security compliance and AI governance. Share your experiences that align with our values, especially around trust and customer obsession.
Tailor Your Application:Make sure to customise your CV and cover letter for the Security Compliance Manager position. Highlight your relevant experience with EU regulations and your ability to translate complex requirements into practical solutions. We love seeing how your background fits with what we do!
Be Clear and Concise:We appreciate clarity in communication, so keep your application straightforward. Use bullet points where possible and avoid jargon unless it’s necessary. This helps us quickly understand your qualifications and how you can contribute to our team.
Apply Through Our Website:Don’t forget to submit your application through our website! It’s the best way for us to receive your details and ensures you’re considered for the role. Plus, it shows you’re serious about joining our family at Sierra.
How to prepare for a job interview at Sierra
✨Know Your Regulations
Make sure you brush up on the EU regulatory frameworks like GDPR and the EU AI Act. Being able to discuss these in detail will show that you understand the landscape and can navigate it effectively.
✨Showcase Your Experience
Prepare specific examples from your past roles where you've successfully managed security compliance or privacy issues. This will help demonstrate your hands-on experience and how it aligns with the role at Sierra.
✨Emphasise Collaboration Skills
Since this role involves working closely with various teams, be ready to talk about how you've collaborated with legal, engineering, or product teams in the past. Highlighting your teamwork skills will resonate well with their family-oriented culture.
✨Communicate Clearly
Practice articulating complex regulatory requirements in simple terms. This is crucial for the role, as you'll need to explain security postures and governance decisions to customers and stakeholders who may not have a technical background.