Life at UiPath
The people at UiPath believe in the transformative power of automation to change how the world works. We’re committed to creating category-leading enterprise software that unleashes that power.
To make that happen, we need people who are curious, self-propelled, generous, and genuine. People who love being part of a fast-moving, fast-thinking growth company. And people who care—about each other, about UiPath, and about our larger purpose.
Could that be you?
Your Mission
We are seeking a Senior Technical Program Manager to join our GRC team. In this role, you will be responsible for managing and supporting key annual audits such as ISO 27001, SOC 1, SOC 2, and HITRUST. The ideal candidate will have deep expertise in security and technical compliance, with a good understanding of the evolving AI landscape. You will also collaborate with cross-functional teams to support cyber risk management activities and ensure our compliance posture is robust and up-to-date.
What You'll Do At UiPath
Audit Management:
- Lead and coordinate efforts for annual audits, including ISO 27001, SOC 1, SOC 2, and HITRUST.
- Ensure timely and accurate preparation of audit documentation, manage stakeholder communication, and facilitate successful audit completion.
- Collaborate with internal teams and external auditors to address audit requirements, findings, and remediation efforts.
Security and Compliance Oversight:
- Understand and stay current with advancements in AI and automation technologies, particularly their security implications and compliance requirements.
- Ensure that AI-driven initiatives and technologies adhere to existing compliance frameworks and risk management strategies.
- Drive Data Security remediation activities to ensure data protection and handling align with internal standards and policies
- Oversee the implementation of security controls and compliance processes aligned with organizational policies and industry regulations.
- Ensure alignment with global standards for data privacy, cybersecurity, and regulatory compliance (GDPR, HIPAA, etc.).
- Work closely with cybersecurity and risk management teams to identify, assess, and mitigate risks related to AI, automation, and broader technological advancements.
- Assist in conducting cyber risk assessments and vulnerability evaluations, supporting proactive risk management.
- Contribute to the continuous improvement of the organization’s overall risk management posture.
What You'll Bring To The Team
- Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
- Relevant certifications such as PMP, CISA, CISSP, CISM, or ISO 27001 Lead Auditor preferred.
- 5+ years of experience building and running compliance and risk reduction
- Strong understanding of common control frameworks, policy/standards, and the overall governance of cyber security compliance program
- Ability to engage with cross-functional teams to drive the implementation of controls,compliance strategies, and other security related risk reduction initiatives
- Experience with measuring the business of compliance and risk through detailed KPI’s,dashboards and data visualization tools
- Familiarity with cloud systems including Azure and AWS
- Familiarity with data governance concepts such as:
- Privacy regulations (GDPR, CCPA, etc.)
- Data classification and labeling
- Data handling practices
- Data protection standards and policies
- Stellar teamwork and collaboration skills
- Proven track record of effectively working with remote teams in different time zones
- Hands-on experience with security technology and techniques
- Experience with automating tasks for data collection and presentation
Maybe you don’t tick all the boxes above— but still think you’d be great for the job? Go ahead, apply anyway. Because we know that experience comes in all shapes and sizes—and passion can’t be learned.
Many of our roles allow for flexibility in when and where work gets done. Depending on the needs of the business and the role, the number of hybrid, office-based and remote workers will vary from team to team. Applications are assessed on a rolling basis and there is no fixed deadline for this requisition. The application window may change depending on the volume of applications received or may close immediately if a qualified candidate is selected.
We value a range of diverse backgrounds, experiences and ideas. We pride ourselves on our diversity and inclusive workplace that provides equal opportunities to all persons regardless of age, race, color, religion, sex, sexual orientation, gender identity and expression, national origin, disability, neurodiversity, military and/or veteran status, or any other protected classes. Additionally, UiPath provides reasonable accommodations for candidates on request and respects applicants' privacy rights. To review these and other legal disclosures, visit our privacy policy.