Role OverviewSome of the world's largest companies and their law firms use Harvey's AI capabilities to deliver world-class client services at unprecedented scale and efficiency. Harvey allows high-performing professionals to gain deep domain knowledge faster, understand the big picture, and tackle more complex challenges in less time.
Our customers depend on us to deliver a secure, trustworthy, and compliant platform. Earning the trust of our customers is a business enabler and we value it more than anything else.
In this role, you'll report to the Head of Trust and own Harvey's end-to-end compliance programs. You will be accountable for establishing and scaling certifications and compliance programs critical to Harvey's expansion into regulated markets. You will work cross-functionally with Engineering, Product Security, Legal, Sales, and external assessors, advisors, and government partners to build a best-in-class compliance practice, and will recruit and lead a small, high-impact team to operate it at scale.
What You'll Do- Build the business case and strategic roadmap for compliance investments, articulating ROI, certification sequencing, and market opportunity to leadership
- Lead gap assessments and compliance readiness evaluations across applicable frameworks, producing maturity baselines and prioritized remediation roadmaps
- Select, onboard, and manage third-party assessors and compliance advisors; hold partners accountable to timelines and escalate risks early
- Drive audit readiness - coordinating evidence collection, continuous monitoring, and audit documentation management with Engineering and Security
- Support customer security reviews, RFP responses, and due diligence conversations as the authoritative internal voice on Harvey's compliance posture
- Build and lead a small team: hire, set direction, develop members, and scale program operations as Harvey's footprint grows
What You Have- 10+ years in information security or compliance, with 5+ years leading compliance programs for commercial SaaS or PaaS
- Deep command of the compliance lifecycle -- scoping, gap analysis, control documentation, assessment coordination, and continuous monitoring
- Proven cross-functional influence at the senior level; able to drive compliance outcomes across Engineering, Product, Legal, and Sales without slowing the business
- Track record selecting and managing third-party assessors and compliance advisory firms
- Experience building and leading small teams in fast-paced environments, with a bias for hiring exceptional people and creating clarity from ambiguity
- 1-2+ years using AI tools to improve program efficiency (evidence automation, gap analysis, continuous monitoring)
Compensation$187,600 - $281,400 USD
Depending on your location, an Applicant Privacy Notice may apply to you. You can find all of our Applicant Privacy Notices [here].#LI-KV1
