Кариери
Sofia, Bulgaria
Hybrid
Full-time

Compliance & Contract Governance Manager

Кандидатствай
Sofia, Bulgaria
Hybrid
Full-time

About the Role

This role owns the end-to-end compliance lifecycle at Cloud Office. You will manage legal compliance operations, handle all customer and vendor contracting flows, oversee DPAs, maintain our Terms of Service, enable regulatory alignment (GDPR, NIS2, SOC 2 requirements), support DORA-related customer obligations, and integrate compliance practices across the company. This is a hands-on role combining legal operations, regulatory compliance, contracting governance, and internal process management.

What you'll do

Contracting & Legal Documentation

  • Draft, review, and manage:
  • Customer agreements
  • DPAs and GDPR addendums
  • Sub-processor notifications
  • Terms of Service, Acceptable Use Statements, Privacy Policies
  • Partner and reseller agreements
  • Maintain contract templates and versioning across Cloud Office entities (BG, GR, UK).
  • Ensure all contracts meet GDPR, NIS2, DORA-lite, and industry expectations.
  • Support the sales team with contract redlines, customer negotiations, and procurement questionnaires.

Compliance Operations & Governance

  • Maintain the compliance framework and ensure policies are annually reviewed and updated.
  • Own the compliance calendar (audits, DR tests, annual reviews, training deadlines).
  • Keep the Register of Regulations (RoR) updated with applicable laws, obligations, and evidence.
  • Coordinate with the SOC/security team on evidence review, policy updates, and customer assurance requests.
  • Conduct compliance onboarding for new internal processes (AI usage, data handling, vendor adoption).

Data Protection & Privacy

  • Manage GDPR compliance activities: DPIAs, DTIA assessments, ROPA updates; DSAR workflow and SLA tracking; Privacy-by-design integration across internal tools
  • Act as internal advisor on data protection questions, ensuring all teams follow the framework.
  • Coordinate with external counsel when necessary.

Vendor Onboarding & Offboarding

  • Run the vendor risk assessment process: Collect and evaluate SOC2/ISO certificates; Security & privacy questionnaires; DPA and contract compliance.
  • Maintain an up-to-date vendor inventory and subprocessor list.
  • Oversee offboarding: termination of access, data deletion verification, and audit trail.

Policy, ToS & AUS Management

  • Own and maintain: Terms of Service; Acceptable Use Statements; Privacy policy; Internal compliance policies.
  • Ensure documents are consistent across websites, portals, contracting, and marketing materials.
  • Coordinate public updates and customer notifications.

Audit & Evidence Support

  • Support SOC 2, ISO 27001 alignment activities, and customer audits.
  • Prepare evidence, documentation packs, and responses to RFP compliance sections.
  • Work closely with tech teams to gather access reviews, training logs, vendor documentation, and DR evidence.

Cross-Company Compliance Integration

  • Work with Engineering, Support, Sales, and HR to embed compliance into everyday operations.
  • Monitor new tools and automation projects to ensure they meet GDPR/NIS2 requirements.
  • Train internal teams on privacy, compliance, and contractual obligations.

Commercial Legal Advisory

  • Advise internal teams on day-to-day commercial legal matters and contractual obligations.
  • Provide clear, practical legal guidance to support sales, procurement, and operational activities.
  • Work closely with sales, finance and leadership teams to support business initiatives.
  • Act as a trusted legal partner, translating legal concepts into business-friendly advice.
  • Coordinate with external counsel when required.

What we're looking for

  • Law degree. Qualification to practice law in the relevant jurisdiction is a plus.
  • Strong understanding of GDPR, privacy compliance, and data processing obligations.
  • Experience reviewing contracts, DPAs, and ToS/AUS content.
  • Familiarity with SaaS business models, cloud providers, and vendor management.
  • Ability to analyse regulations and translate them into internal processes.
  • Excellent writing skills and ability to produce clear, high-quality documentation.
  • Strong project management and organisational capabilities.
  • Comfortable coordinating across teams and driving processes end-to-end.

Nice to Have

  • Experience working with SOC 2, ISO, NIS2, DORA, AML/KYC, or other regulated frameworks.
  • Previous experience in a SaaS company or cloud services provider.
  • Experience supporting customer RFPs, vendor questionnaires, or compliance reviews.

Role Impact

This role acts as the backbone of Cloud Office’s legal and compliance function.

You will make sure that:

  • all contracts flow smoothly,
  • DPAs are airtight,
  • compliance is predictable and evidence-backed,
  • vendors are safe,
  • customers receive high-quality assurance,
  • and Cloud Office meets the expectations of banks, enterprises, public sector, and partners.

Съдържание
Example H2

Why Join Us?

Cloud Office is where high-performing professionals come to solve real-world technical challenges, grow fast through action, and build with people who move as fast and think as clearly as they do.

Collaborative and forward-thinking team

At Cloud Office, you’ll be part of a collaborative and forward-thinking team where learning, growth, and transparency are at the core of our culture.

Ongoing training and mentorship

You’ll have the opportunity to work closely with industry leaders, gain deep expertise in cloud solutions, and advance your career through ongoing training and mentorship.

Make a real impact

We empower our people to take ownership, innovate, and make a real impact by helping clients harness the full potential of cloud technology.

About us

At Cloud Office, we don’t believe in coasting - we believe in clarity, challenge, and growth. Our teams solve complex problems for industry-leading clients using cloud technology and sharp thinking.

We hire people who move fast, think deeply, and take ownership. Here, you’ll grow through action, be surrounded by peers who raise your game, and do work that’s seen - by clients, by leadership, and by the results it drives.

Customers' innovation partner for the future

We are a Premier Google Partner, certified Google Maps Platform Partner, and the only partner in our region to hold three distinct Google Cloud specializations.  This certified expertise is crucial, because it allows us to build custom cloud infrastructure, data, AI, productivity, and specialized SecOps solutions for demanding industries.

So while we're our customers' innovation partner for the future, our real job is to be their cloud solution provider today, turning that deep technical expertise into tangible outcomes for their business.

Join a team of experts

We are always looking for talented engineers, cloud architects, and data scientists who share our passion for solving hard problems. If you are driven by excellence and want to build the future of the cloud, we want to hear from you.