Compliance Manager

Description

TrueNAS is redefining enterprise storage by delivering proven data resilience, performance, and flexibility—without the complexity or constraints of legacy solutions. As the most widely deployed storage platform in the world, TrueNAS powers critical data infrastructure for businesses, research institutions, and government agencies across 140+ countries and millions of users. Our mission is simple: to become the most trusted name in data storage.

Founded in Silicon Valley in 2002 as iXsystems, TrueNAS is a profitable, independent company built on trust, curiosity, technical excellence, and continuous improvement. Whether remote or on-site, you'll join a team that values collaboration and meaningful impact—where people come before profit and bold ideas shape the future of data infrastructure.

If you're ready to help shape the future of enterprise storage, we'd love to connect.

Position Overview

As a Compliance Engineer / Compliance Manager at TrueNAS, you will play a critical role in ensuring our products, systems, and processes meet global regulatory, cybersecurity, and industry standards. You will develop, implement, and maintain compliance frameworks across hardware, software, security, and operations.

You'll work cross-functionally with Product Management, Engineering, IT, Operations, Supply Chain, HR, and Legal to ensure proactive compliance readiness while enabling innovation and growth. This role requires strong technical understanding, regulatory expertise, and the ability to translate complex requirements into scalable processes.

This is an in-office role based in Makati. Schedule: Monday–Friday, 10 PM–7 AM PHT.

Compensation & Benefits

Base pay ranges from ₱114,755 to ₱123,900 per month, with eligibility for an incentive bonus after six months. Final offers are based on experience, education, and location.

Benefits include health, dental, vision, paid time off, and stock options.

The Day-to-Day

Quality Management System (QMS) & Standards

• Support development and maintenance of the corporate QMS aligned with ISO 9001
• Translate ISO requirements into internal policies, procedures, and work instructions
• Prepare for audits by managing documentation, tracking non-conformances, and supporting readiness activities
• Act as a compliance liaison on new process development to ensure alignment with ISO principles

Product Regulatory Compliance

• Lead global product certifications (CE, FCC, IC, CB Scheme, UL, TÜV, etc.)
• Manage relationships with test labs and certification bodies to support product launches
• Oversee testing, submissions, TCFs, Declarations of Conformity, and labeling
• Ensure lifecycle compliance, including design changes and new product introductions
• Partner with Engineering, Product, and Supply Chain to validate vendor certifications

Cybersecurity & IT Compliance

• Act as compliance liaison for frameworks such as ISO 27001, NIST 800-171, CMMC 2.0, Cyber Essentials Plus, and SOC 2
• Coordinate scoping, gap assessments, and readiness reviews
• Support development of SSPs, POA&Ms, and evidence repositories
• Monitor evolving regulations (e.g., CMMC, DFARS, FAR) and communicate impacts
• Ensure IT work meets audit-ready documentation standards

Environmental & Chemical Compliance

• Ensure compliance with RoHS, REACH, WEEE, PPWR, PFAS, and related regulations
• Support ISO 14001-aligned environmental initiatives
• Oversee material declarations and environmental documentation
• Coordinate with suppliers to maintain certifications and disclosures

Health & Safety Compliance (Global)

• Support H&S compliance across US, Philippines, and EU sites
• Monitor regulations (OSHA, DOLE, EU-HSA) and ensure alignment
• Track risk assessments, audits, and corrective actions
• Promote consistent global reporting and documentation practices
• Assist in developing region-specific safety training programs

Risk Management & Governance

• Identify and manage compliance risks across products, cybersecurity, supply chain, and operations
• Develop mitigation strategies and monitor effectiveness
• Track regulatory changes and assess business impact
• Research new requirements and define compliance pathways
• Engage external experts and serve as point of contact for auditors and regulators

Audit & Compliance Program Management

• Plan and lead internal and external audits
• Conduct risk-based compliance assessments
• Drive CAPA efforts and track remediation
• Maintain centralized documentation and evidence repositories

Cross-Functional Collaboration

• Partner across teams to operationalize compliance requirements
• Support customer compliance requests (RFPs, RFQs, security questionnaires)
• Provide regulatory impact analysis for new products and markets
• Promote a culture of compliance, accountability, and continuous improvement

Education and Experience

We value diverse backgrounds and experiences. Success in this role typically includes:

• Bachelor's degree in Engineering, Information Security, Regulatory Affairs, Environmental Science, Quality, or related field (or equivalent experience)
• 5–8 years of experience in regulatory compliance, product certification, cybersecurity compliance, or similar roles in technology, hardware, or manufacturing
• Experience in ISO 9001 environments, including document control, CAPA, and audit readiness
• Hands-on experience with global certifications (CE, FCC, UL, TÜV) and test labs
• Exposure to frameworks such as ISO 27001, NIST 800-171, CMMC 2.0, SOC 2, or similar
• Experience supporting audits and managing corrective action plans
• Cross-functional collaboration with Engineering and IT

Preferred certifications: CISA, CISSP, CISM, ISO Lead Auditor (9001/27001/14001), CCEP, or similar