Program Manager
TCGplayer (an eBay company)
Compliance & Risk Program Manager
MagicSchool AI
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇺🇸 United States
Visit company websiteSalary
💰 $160,000 - $205,000 per year
Job Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudGoogle Cloud Platform
About the role
- Own Compliance Programs: Lead MagicSchool’s SOC 2 readiness and audits, ensuring controls are properly designed, implemented, and tested.
- Education-Specific Compliance: Maintain compliance with FERPA and COPPA, advising product and technical teams on student data privacy requirements.
- Agile Collaboration: Partner within Agile teams to embed compliance and privacy-by-design principles into product development and sprint cycles.
- Technical Partnership: Work closely with engineering and infrastructure teams to establish security and compliance best practices across cloud environments (AWS, GCP, or Azure).
- International Expansion: Research, design, and oversee compliance with global data protection laws (e.g., GDPR, PIPEDA) as MagicSchool scales internationally.
- Risk Management: Build and maintain risk frameworks to identify, assess, and mitigate organizational and technical risks.
- Policy & Process Development: Create and manage policies on data handling, access controls, vendor risk, and incident response.
- Cross-Functional Enablement: Educate and guide non-technical teams (sales, support, marketing) on compliance responsibilities and risk mitigation practices.
- Training & Awareness: Deliver compliance training programs to ensure company-wide understanding and adherence to privacy and security obligations.
- Monitoring & Reporting: Track compliance KPIs, prepare audit and risk reports, and present findings to leadership and key stakeholders.
Requirements
- 5+ years of experience in risk, compliance, or information security roles (preferably in SaaS, edtech, or regulated industries).
- Proven success leading SOC 2 or equivalent audits (Type I/II).
- Strong working knowledge of FERPA, COPPA, and related data protection frameworks.
- Familiarity with Agile methodologies and experience integrating compliance processes into Agile workflows.
- Demonstrated ability to collaborate with technical teams, influencing architecture and design decisions through a compliance and risk lens.
- Experience managing or building compliance programs across cloud infrastructure (AWS, GCP, or Azure).
- Strong communication and stakeholder engagement skills — able to bridge technical and business perspectives.
- Relevant certifications such as CIPP/US, CIPM, CISA, or CISSP preferred.
Benefits
- Work on cutting-edge AI technology that directly impacts educators and students.
- Join a mission-driven team passionate about making education more efficient and equitable.
- Flexibility of working from home, while fostering a unique culture built on relationships, trust, communication, and collaboration with our team - no matter where they live.
- Unlimited time off to empower our employees to manage their work-life balance.
- Choice of employer-paid health insurance plans so that you can take care of yourself and your family. Dental and vision are also offered at very low premiums.
- Every employee is offered generous stock options, vested over 4 years.
- Plus a 401k match & monthly wellness stipend
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
SOC 2FERPACOPPArisk managementcompliance programsdata protection lawscloud infrastructureAgile methodologiesincident responsedata handling
Soft skills
communicationstakeholder engagementcollaborationinfluencingtrainingguidanceeducationcross-functional enablementpolicy developmentprocess management
Certifications
CIPP/USCIPMCISACISSP
