Role Description Our client is an emerging technology company developing advanced AI-driven cyber intelligence and risk management solutions for regulated industries. As the business continues to scale and expand into new markets, they are seeking a Privacy & Compliance Lead to support the development and operation of their privacy, compliance, governance, and legal operations functions. This is a substantive individual contributor role offering significant ownership and responsibility across privacy, compliance, governance, and operational legal matters. Working closely with the General Counsel, you will help build and maintain scalable compliance processes that support a growing international technology business. This opportunity is best suited to professionals who are comfortable contributing within an early-stage environment where engagement structures evolve alongside company growth. Qualifications - 4–8 years' experience within privacy, compliance, legal operations, governance, regulatory affairs, or similar functions - Strong practical experience operating GDPR compliance processes - Experience managing compliance programmes or compliance-related activities - Experience supporting legal operations and contract administration - Excellent written communication and documentation skills - Strong organisational skills and attention to detail - The ability to work independently whilst exercising sound professional judgement Requirements - Experience in privacy, compliance, legal operations, regulatory affairs, or related functions - Experience managing GDPR compliance activities, including: - Records of Processing Activities (RoPA) - Data Protection Impact Assessments (DPIAs) - Data Subject Rights Requests - Data Processing Agreements (DPAs) - Experience within a SaaS, technology, cybersecurity, fintech, financial services, or other regulated environment - Hold any privacy, compliance, legal operations, or governance certifications (e.g. CIPP/E, CIPM, CIPT, ISO 27001, SOC 2, etc.) - Comfortable working within a fractional, remote-first environment Benefits - Flexible remote working - Opportunity to work alongside experienced legal, cybersecurity, technology, and commercial leaders - Significant ownership and responsibility - Exposure to complex international privacy and compliance matters - Opportunity to contribute to the development of a growing technology platform Key Responsibilities - Compliance Programme Management - Support the day-to-day operation of the compliance programme - Maintain compliance calendars, risk registers, and internal policy libraries - Monitor regulatory developments across relevant UK, EU, and international frameworks - Prepare compliance briefings and management updates - Coordinate compliance training and awareness activities - Support audit preparation and certification activities, including ISO 27001 and SOC 2 - Privacy & Data Protection Operations - Support GDPR compliance activities across the business - Maintain privacy records, registers, and supporting documentation - Coordinate Data Protection Impact Assessments (DPIAs) - Manage Data Subject Rights Requests and associated processes - Support processor due diligence and vendor privacy reviews - Maintain privacy notices, policies, and supporting documentation - Assist with international data transfer assessments and documentation - Legal Operations & Contract Management - Support the management of standard commercial agreements, including NDAs, DPAs, supplier agreements, and advisory contracts - Maintain contract registers and renewal tracking - Manage template libraries and version control - Assist with legal due diligence activities relating to partnerships, procurement, and fundraising initiatives - Coordinate document execution and filing processes - Governance & Policy Management - Draft, maintain, and update internal policies and governance documentation - Coordinate policy reviews and staff acknowledgements - Support management reporting on compliance and risk matters - Act as a first point of contact for internal compliance-related queries - Escalate legal matters appropriately to the General Counsel What Makes Someone Successful in This Role - Organised & Proactive: Comfortable managing multiple priorities and ensuring important compliance activities remain on track. - Commercially Aware: Understand how compliance supports business growth and can balance risk with pragmatism. - Strong Communicator: Able to translate complex regulatory concepts into practical guidance for non-specialists. - Independent & Accountable: Comfortable working remotely and taking ownership of responsibilities. - Detail-Oriented: Enjoy building structure, maintaining standards, and ensuring nothing falls through the cracks.

Role Description As Vesta's first compliance hire, you'll own how we think about mortgage regulation and help turn that thinking into a product that helps our lenders meet their compliance obligations. In this role, you can expect to: - Own Vesta's internal interpretation of mortgage origination regulations, becoming the authoritative voice the whole company relies on for regulatory and investor compliance. - Partner closely with our product team, advising on how the product should be built for seamless loan origination compliant with applicable regulations. - Help ensure our AI products meet evolving regulatory and investor requirements. - Support our customer-facing teams, equipping sales, implementations, and customer success with Vesta's perspective on regulatory and investor guideline compliance. - Stay ahead of the regulatory landscape – GSE and agency guidelines, TRID, ECOA and fair lending, RESPA, GLBA, state-level requirements, and evolving rules around AI in lending – and translate changes into action for our product and customers. Qualifications - 5+ years in mortgage compliance, ideally including time owning or helping lead the compliance function at a mortgage lender. - Deep and practical knowledge of mortgage origination regulation. - Comfortable forming and defending a clear point of view internally and in front of customers. - Excited to help shape a product, not just police it. - Curious about AI and energized by the question of how to build and deploy it responsibly in a highly regulated industry. - Self-starter and team player, comfortable being the only person in your function. - Looking to join an early-stage team to build something BIG and industry-changing. Benefits - Robust medical, vision, & dental coverage (~100% of employee premiums are covered). - 401(K) plan offering. - Meaningful parental leave - 16 weeks fully paid for all new parents, birthing & non-birthing parents (applies to adoptions as well!). - Remote-first culture with hubs in New York & San Francisco. - Generous WFH & Wellness Benefits. - Monthly Doordash benefits. - Open & encouraged flexible time off. - Company offsites to get to know the team!

• Apply Workiva’s pre-sales frameworks, including Demo2Win and MEDDIC, to drive discovery, lead product demonstrations, respond to RFPs, engage customers and partners, and align Workiva solutions to customer needs • Demonstrate expertise across Workiva’s Governance, Risk, and Compliance solutions - developing working knowledge of industries, departments, and use cases where Workiva can have an impact • Partner with Sales to develop account plans, support technical qualification, inform forecasting, and shape deal strategy in alignment with Workiva goals and objectives • Conduct process assessments with customers, build Proof of Concepts to validate requirements, build and present partner specific business cases • Ensure customer success by working with implementation partners and Workiva Client Services team for smooth on-boarding and long term success • Assist in developing new use-cases or by using existing templates providing proof of our solution's impact and value proposition • Demonstrate AI fluency by using AI to improve presales execution and responsibly positioning Workiva’s AI capabilities with prospects and users • Stay current on new Workiva products, roadmap capabilities, platform enhancements, and market trends to support roadmap selling and demonstrate current and emerging capabilities • Work with Sales, Product Marketing, Client Services, Scoping, and Customer Success to achieve team and company goals • Maintain strong presales documentation and business process discipline, including deal notes, Technical Win updates, opportunity support, expenses, and required enablement • Represent Workiva confidently at marketing events, webinars, conferences, speaking engagements, and other onsite and virtual client facing settings • May begin to deliver cross-domain coaching, training, or mentoring peers

Role Description You build and run Harper's compliance program from the ground up. You own: - Producer licensing and market conduct. - The clearance workflow for every outbound channel, lifecycle sequence, and partner program before it goes live. - Communication-channel policy, DOI complaint intake and escalation, surplus lines tax operations, and the incident-notification playbook. - Partner with finance on customer-funds handling. - Partner with engineering on wiring clearance gates and licensing checks into the systems operators actually use. - Partner directly with the CEO when judgment calls escalate. You sit at the intersection of Operations, Growth, Finance, and Engineering. This is a hands-on operator role for someone with deep insurance regulatory experience who has built, rebuilt, owned, or scaled a meaningful compliance function. Qualifications - 5+ years in insurance compliance, regulatory affairs, or a control function—brokerage or agency experience strongly preferred. - Multi-state P&C licensing fluency; demonstrated surplus lines experience. - Track record building, rebuilding, owning, or scaling a meaningful compliance function (or a material part of one). - Hands-on with TCPA, CAN-SPAM, state telemarketing rules, and high-volume outbound enforcement. - Experience with DOI complaints, market conduct exams, and E&O posture. - Track record of proactive regulator engagement—working with state DOIs and surplus lines authorities before issues arise, not just after. - Comfortable working directly with a founder/CEO and earning trust quickly. - Strong written communication; you write policies people read once and follow. - Bias to ship, low ego, high judgment. Requirements - Surplus lines tax, premium finance, and FBO/trust account familiarity. - Financial-services or fintech control-function background paired with insurance regulatory depth. - Experience clearing dataset-driven outbound (public-records, license lists, DPPA-covered data). - Experience setting guardrails for AI-assisted customer communications. - Multi-state incident notification experience. - SOC 2 or security-compliance coordination. - Anti-rebating, RESPA lane analysis, and partner/referral economics review. Benefits - Health, dental, and vision insurance. - Commuter benefits (SF) or remote-work stipend. - Team meals and snacks (SF). - Direct reporting to the CEO; high ownership, high visibility. Compensation - Salary: $150,000–$220,000 + performance bonuses & equity. - Location: San Francisco Bay Area preferred; remote considered for the right candidate. - Schedule: Monday–Friday. The hours are long. The Process - One to two screening calls—Alignment on mission, pace, and scope. - On-site super day—Audit a live regulatory surface with the team, meet ops, finance, and engineering, show how you think. To Apply Send your resume and tell us about a time you saw a regulatory risk coming, stood up the controls before it surfaced, and let the business keep moving.