Compliance Specialist

So, What's the role all about?

This role exists to ensure NiCE-Cognigy can efficiently, accurately, and consistently respond to customer and prospect compliance, security, and regulatory requests — particularly during sales cycles and renewals. The Compliance Specialist serves Sales, Legal, Security, and external auditors by owning vendor questionnaires, bid documentation, and evidence coordination, enabling faster deal cycles and smoother audits while maintaining a strong and credible compliance posture. The role acts as the primary operational interface between compliance frameworks and customer-facing requirements, in both German and English.

How will you make an impact?

Compliance Questionnaire Management

• Own and complete vendor assessments, security questionnaires, DDQs (Due Diligence Questionnaires), TPQ forms, and bid documentation in German and English.
• Ensure timely, accurate, and high-quality responses to customer and prospect compliance requests.
• Track and manage questionnaire pipeline, turnaround times, and outcomes.

Sales Enablement & Stakeholder Support

• Act as the primary compliance point of contact for the Sales team during bids and contract renewals.
• Respond to Sales requests within agreed SLAs (same or next business day for standard requests).
• Provide compliance guidance and positioning support to Sales, Legal, and external stakeholders.

Audit Evidence & Coordination

• Gather, organize, and maintain audit evidence for recurring audits including ISO 27001, SOC 2 Type II, PCI DSS, C5, and customer-specific audits.
• Collaborate closely with Security, Engineering, and IT to collect and validate evidence.
• Ensure documentation is complete, current, and audit-ready at all times.

Compliance Tooling – Vanta Platform Ownership

• Actively maintain and manage the Vanta compliance platform, ensuring evidence, controls, and framework mappings are accurate and up to date.
• Monitor control coverage and freshness; proactively address gaps before they affect audit outcomes.
• Serve as the internal Vanta subject-matter expert and point of contact.

Knowledge Base & Standardization

• Build, maintain, and continuously improve a structured internal knowledge base of standard answers, templates, and compliance references.
• Increase reuse of standardized responses across customers and regions to reduce ad-hoc drafting effort.
• Ensure consistency and quality of responses used by Sales and Compliance teams.

Have you got what it takes?

Technical Knowledge

• Strong understanding of security and compliance frameworks: ISO 27001, SOC 2, PCI DSS, C5, and GDPR.
• Experience completing vendor assessments, DDQs, and security questionnaires.
• Working knowledge of SaaS security and cloud environments.
• Hands-on experience with compliance tooling — Vanta experience is a strong advantage.

Communication & Language

• Fluent written and spoken communication skills in both German and English (professional/business level required).
• Ability to translate complex compliance requirements into clear, customer-friendly responses.

Working Style & Collaboration

• High attention to detail and structured, methodical approach to work.
• Ability to manage multiple concurrent questionnaires and deadlines under time pressure.
• Effective collaboration with internal teams: Sales, Legal, Security, Engineering, and IT.
• Comfortable working with external customers, auditors, and third-party assessors.

Enjoy NiCE-FLEX! 

At NiCE, we work according to the NiCE-FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work, each week. Naturally, office days focus on face-to-face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere.

Requisition ID: 10661
Reporting into: Manager, Safety & Security
Role Type: Individual Contributor

#LI-Hybrid