Role Description
We are looking for a Senior Compliance Officer who is first and foremost an exceptional negotiator and a strategic doer. This is not a traditional compliance advisory role — 50 to 70% of your time will be spent directly engaging with customers, vendors, and large institutions, negotiating complex compliance and contractual matters across technology, legal, and information security domains.
Key Responsibilities:
- Lead negotiations with customers, vendors, and large institutions on compliance, contractual, and risk-related matters across tech, legal, and Infosec domains.
- Spend 50–70% of your time in external-facing engagement — acting as the compliance interface for sales cycles, vendor onboarding, and partnership agreements.
- Go deep into matters — understand the nuances of each negotiation, identify risks, and drive resolution with a strong point of view.
- Work closely with internal teams (product, legal, Infosec, sales) to align compliance positions with business strategy.
- Own and execute the company's compliance strategy — not just advise, but deliver outcomes.
- Build and maintain strong relationships with institutional clients, regulators, and external partners.
- Identify compliance gaps in deals and product launches; develop pragmatic solutions that enable business without compromising risk posture.
- Represent the company in compliance discussions and due diligence processes with enterprise customers and investors.
Qualifications That We Look For:
Must-Have
- Exceptional negotiation skills — proven ability to negotiate with large institutions, corporates, and cross-functional counterparts (tech, legal, Infosec).
- 10–12 years of experience in a regulated environment, with pedigree from Infosec, product banks, data privacy, or legal functions.
- A doer mindset — someone who builds strategy and executes it hands-on, not just a policy writer or advisor.
- Ability to go deep — intellectually rigorous, detail-oriented, and comfortable navigating complex and ambiguous situations.
- Strong communication and stakeholder management skills across all levels, internally and externally.
Good to Have
- Deep expertise in Information Security (Infosec)
- Deep expertise in Data Privacy — familiarity with DPDP Act, GDPR, or related regulations.
- Deep expertise in Legal — contract law, regulatory interpretation, or financial services legal background.
Note: Breadth across all three domains is not required. Deep expertise in any one of Infosec, Data Privacy, or Legal — combined with strong negotiation ability — is what matters.
The Ideal Profile
- You have sat across the table from enterprise procurement, legal, and Infosec teams at large banks or institutions — and held your ground.
- You are known for closing difficult compliance conversations, not escalating them.
- You understand that compliance is a business enabler, not a blocker — and you operate accordingly.
- You come from a strong institutional background: a product bank, a regulated Fintech, a Big 4, or a leading law/Infosec firm.
You are comfortable owning outcomes and driving cross-functional teams without formal authority.
