Senior Compliance Manager​/Director of Compliance

Senior Compliance Manager/Director of Compliance

San Mateo, CA, United States

Who We Are

Verkada's six product lines—video security cameras, access control, environmental sensors, alarms, workplace, and intercoms—provide unparalleled building security through an integrated, cloud‑based software platform. Over 33,500 organizations, including 96 companies in the Fortune 500, across 93 countries worldwide trust Verkada as their physical security layer for easier management, intelligent control, and scalable deployments. Founded in 2016 with more than $700M in funding raised to‑date, Verkada has expanded rapidly with 15 offices and 2,200+ full‑time employees.

About the Role

This is a unique opportunity to help build out Verkada’s global regulatory compliance program. As a key member of the Legal department reporting to the Chief Privacy Officer, you will serve as a critical compliance partner to the Security team, helping the legal team fulfill legal obligations, coordinating with external auditors, and acting as the internal audit function for security requirements mandated by legal regulations.

You will play a significant role in shaping the direction of the Company’s regulatory compliance programs with a particular focus on FTC and CCPA/CPRA risk and security and AI compliance. The ideal candidate will be able to hit the ground running on day one, excited to roll up their sleeves and dive in while also eager to set the strategic vision.

What You’ll Do

• Act as the primary legal compliance partner for the Security team, translating legal and regulatory requirements (e.g., FTC, CCPA) into actionable security controls and procedures.

• Lead the internal audit function for regulatory security, privacy, and AI compliance, regularly assessing the effectiveness of security controls against legal obligations and providing detailed reports to the Chief Privacy Officer, Chief Information Security Officer, and other stakeholders.

• Work with key privacy, security, and product leaders to develop and lead the company’s legal regulatory compliance program, ensuring ongoing compliance with Verkada’s evolving data privacy, security, risk and governance obligations.

• Develop and oversee the company’s compliance framework with a focus on an ongoing FTC‑mandated infosec program, as well as CCPA/CPRA risk requirements, ensuring all controls are documented, implemented, and tested.

• Implement and maintain tooling and processes to support testing and continuous monitoring of legal and security controls across multiple domains: privacy, product, security, AI, IT, etc.

• Participate in annual risk assessments with the security team, and assist them in preparing risk treatment plans, including escalation paths and remediation processes.

• Work closely with external auditors and assessors to educate them about and achieve continuous compliance over the control environment; oversee gathering and maintaining necessary evidence for the audit process.

• Create procedural documentation, including standard operating procedures and other process‑related documentation.

• Communicate progress, escalations, and issue resolution to management and team stakeholders.

• Contribute to the roadmap for continuous compliance across the control population with a goal of increasing automation coverage.

• Build relationships with a broad range of Verkada employees at all levels to accomplish program objectives.

What You Bring

• Bachelor’s degree from a four‑year university (computer science/engineering degree or equivalent IT background strongly preferred).

• 8+ years of relevant compliance experience.

• Deep technical understanding of security engineering principles and architectures, specifically those related to cloud security, IoT, edge computing, AI/ML, and computer vision.

• Demonstrated experience managing compliance programs related to FTC regulations and consent decrees, and CCPA/CPRA risk assessment requirements.

• Ability to effectively and autonomously accomplish outcomes across cross‑functional teams in ambiguous situations with minimal supervision.

• Proven understanding and experience with data privacy and security…