INTRODUCTION

The Zebra, named a Best Place to Work in Austin four years running, is revolutionizing how connected consumers research and shop for insurance. We’re a purpose-driven company looking for a Compliance Manager to own security and privacy compliance functions, oversee compliance efforts across the company, and bolster the broader security and privacy programs. 

In this role, you will have the opportunity to steer the execution of internal audits, be the primary liaison for external auditors, monitor awareness training, oversee risk assessments of third parties, and enable new business partnerships by satisfying external security assessment requests. You will report to the Director of Compliance and will function across the organization, ensuring that effective security and privacy controls everywhere in the company are operational and balanced.

Please note: This person will need to be in Austin, Texas for this position. 

 
This position is not currently eligible for visa sponsorship

WHAT YOU'LL DO:

  • Collaborate with Security, Engineering, Infrastructure, Product, and IT to develop security and privacy controls, balancing the protections they provide against the burden their adoption might introduce.
  • Steer execution of internal audits, ensuring that effective controls which satisfy statutory, regulatory, and contractual requirements within product and corporate environments are in place and operational.
  • Serve as the primary liaison for external auditors – properly defining scope, collecting and submitting evidence, and ensuring audits go smoothly without business disruption.
  • Advance the awareness program by ensuring content satisfies evolving security and privacy compliance requirements and monitoring progress of employees across the company in completion.
  • Participate in security and privacy risk assessments of third parties – determining the appropriate scope, conducting outreach and engagement, evaluating responses and documentation, and making recommendations for risk remediation and acceptance.
  • Support development of business partnerships by satisfying external assessment requests received by the company.
  • Prepare reports and deliver presentations on compliance level, audit status, and control effectiveness to support management decision-making.

REQUIREMENTS / QUALIFICATIONS:

  • 2-5 years experience in compliance, IT audit, and/or information security 
  • Strong working knowledge of security and compliance frameworks such as SSAE-16 SOC2, PCI-DSS, CIS CSC, and Federal and state statutes.
  • Demonstrated history of successfully developing controls, performing audits, and conducting risk assessments.
  • Strong communication skills and an ability to develop and maintain effective partnerships with business and technology counterparts within and outside the company.
  • Experience supporting security controls and audit activities within architectures that span cloud and containerization technologies such as AWS, Docker, and Kubernetes, in addition to conventional operating systems such as Linux, Mac, and Windows.
  • Experience operating within DevOps environments, and an ability to employ Agile principles and lead scrum teams.
  • Familiarity with productivity and development tools such as the G Suite, the Atlassian suite, Slack, Github, and Jenkins.

BENEFITS + PERKS:

  • Competitive Compensation & Stock Option Offering
  • Health, Dental, Vision & Disability Coverages
  • HSA offering + employer contribution
  • 401k with match
  • Unlimited PTO + flexibility to enjoy it
  • Paid Parental Leave Program
  • Wellness perk ($100/month)
  • Pet Adoption Reimbursement ($300/year)
  • Learning & Development Stipends
  • Bi-Monthly Wednesday Catered Lunch
  • Zeal Care - Monthly wellness subscriptions ($35/month)
  • Curated monthly snack box - sent to your house
  • Opportunity to join Employee Resource Groups (ERGs) or drive our diversity & inclusion stance by creating your own
  • Join a team that truly lives their values, and values their lives (outside of the office. Cliche, we know… but we really mean it)

ABOUT THE ZEBRA

The Zebra is the nation’s leading insurance search comparison site. With its dynamic, real-time quote comparison tool, drivers can identify insurance companies with the coverage, service level, and pricing to suit their unique needs. The Zebra compares more than 100 car insurance companies and provides licensed agent support and educational resources to ensure drivers are equipped to make the most informed decisions about their policies. It’s “insurance in black and white.”

Headquartered in Austin, Texas, The Zebra has garnered the attention and investment of some of the nation’s top venture capitalists, and the company’s success has been profiled in publications like Inc., Time, Forbes, and TechCrunch. Austin Business Journal named The Zebra a Best Place to Work in 2015, 2016, 2017, 2018 and 2020. Austin American-Statesman awarded The Zebra as a Top Workplace in 2016, 2017 and 2018.  Inc. Magazine also awarded The Zebra as Best Workplaces - 2018, 2019, 2020.

The Zebra is aiming to grow our fantastic team to add to our dynamic culture and continue building on our success. Working at The Zebra means never being bored, always being challenged, and supporting one another. We’re a happy, hardworking group, and we’re eager to add “new stripes” who share those values.

The Zebra is an equal opportunity employer and “at will” company.

As part of our dedication to maintaining an inclusive and diverse workforce, The Zebra provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, The Zebra complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

The Zebra expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of The Zebra's employees to perform their job duties may result in discipline up to and including discharge.

**No external recruiters or agents, please.**

Apply for this Job

* Required
  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at The Zebra are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.