Security and Compliance Program Manager

Our Mission

SPAN develops products that accelerate the rapid adoption of renewable energy in the home. The flagship SPAN Smart Panel is the first true evolution for the traditional home electric panel, harnessing enhanced technology for metering, monitoring, and control. An expanded product suite of intelligent, integrated solutions radically lowers the cost and complexity of energy upgrades–including solar, batteries and EVs–empowering homeowners to be active, resilient and informed players in the energy market.

The Role

We are looking for a Security and Compliance Program Manager to manage Span's ongoing security and compliance activities as part of the Security & IT team at Span. You will be responsible for defining and conducting security & compliance program activities, developing effective metrics and reporting systems and managing the external and internal audit support. This role will also support our Sales team with pre-Sales RFPs and security workshops. Responsibilities include:

• Manage compliance projects across multiple teams, including operations, IT and development
• Develop internal policy and procedure documents to support Span's security & compliance initiatives
• Provide responses to customer security questionnaires and RFPs
• Develop and own the annual risk assessment, disaster recovery and business continuity plan.
• Provide responses to customer security questionnaires and RFPs and participate in pre-sales calls with customers to discuss Span's security & compliance capabilities
• Coordinate external & internal security & compliance audit activities
• Advise internal business stakeholders on risk and compliance requirements and work in cross-functional partnership to help ensure those requirements are met
• Clearly explain our security & compliance program to third parties, including customers and vendors
• Keep track of new regulations, industry best practices, and implement continuous improvement on an ongoing basis
• Work with legal on development of privacy artifacts e.g Privacy Policies, Privacy Impact Assessment (PIA) etc.

About You

We are seeking a Security GRC Program Manager who has:

• Bachelor's Degree
• 5 years of experience in an equivalent security and compliance related role
• Strong knowledge of industry compliance standards as they relate to Software as a Service, such as SOC2, FedRAMP, ISO27001, and EU Privacy regulations
• Familiarity with Cloud Computing and Software as a Service
• Keen attention to detail and accuracy is necessary in order to analyze and finalize documents
• Organized, responsive, and able to gain support and consensus with multiple stakeholders
• Strong communications skills, both written and oral
• Certifications such as CISA, CISM, CISSP desirable, but not required

Life at SPAN

SPAN embraces diversity and equal opportunity in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills.

Headquartered in San Francisco's vibrant SoMa neighborhood, we are an eclectic group of creative thinkers who value open communication, teamwork, and a 'make it happen' approach to addressing complex challenges.

Our CEO, Arch Rao⁠—former head of the Tesla Powerwall team⁠—fosters an energetic and collaborative environment, with a strong emphasis on maintaining work-life-balance across the organization.

We're hiring talented individuals who are driven by success and are passionate about shaping the future of renewable energy. If that sounds like you, we'd love for you to consider joining the rapidly growing team at SPAN.

The Perks:

• Competitive compensation equity grants at a well-funded, venture-backed company

• Comprehensive benefits (including medical; dental, vision, life and disability insurance)

• Comfortable, sunny office space located near BART and Caltrain public transit

• Strong focus on teambuilding and company culture (events, meet-ups, clubs)

• Flexible hours and unlimited PTO

Our Mission & Values:

At SPAN, we believe that powering your home with clean energy should be a simple and delightful experience that is at its essence human-centered and technology-forward.

Our core values include:

• Making home energy more accessible, intuitive, and convenient.
• Enabling homes and vehicles to be powered by the sun.
• Building resilient homes with reliable power.
• All-electric everything.
• A more flexible & distributed grid.

Interested in joining our team? Submit an application today and we'll be in touch with next steps!