Platform overview
Checkmarx One
Agentic AI
Checkmarx One Assist
AI-powered Agentic AppSec agents preventing and remediating threats autonomously.
Developer Assist
Developer-first AI agent for instant vulnerability prevention and fix.
Posture
ASPM
Unified visibility, control and prioritization across your entire AppSec posture.
PARTNERSHIPS & INTEGRATIONS
Partner Programs
Building stronger AppSec ecosystems through trusted partnerships.
Find a Partner
Discover certified partners to accelerate your AppSec journey.
SOLUTIONS FOR
Code
Supply Chain
Cloud
Services
Developer-first Al agent preventing and remediating vulnerabilities instantly in IDE.
SAST
Market-leading, developer-friendly static application security testing and analysis
DAST
Developer tailored dynamic application scanning for efficient security issues remediation.
API Security
Enterprise scale API security scanning for early detection of critical vulnerabilities.
SCA
Identify, prioritize, and remediate open-source vulnerabilities, malicious code, and license risks.
Malicious Package Protection
Reveal and eliminate malicious open-source packages using industry’s largest database.
Repository Health
Enhance security with full visibility into code repository health.
Software Supply Chain Security
Protect your entire software supply chain with industry-leading security across legacy, open source, and Al-generated code.
Container Security
Secure containerized applications across SDLC, from code to cloud runtime.
laC Security
Secure cloud infrastructure via advanced scanning and vulnerability detection.
Premium Support
Enhance security outcomes and ROl with proactive, expert technical support.
Premium Services
Accelerate AppSec program success while maintaining seamless developer experience.
Maturity Assessment
Assess your AppSec maturity and unlock actionable improvement steps.
Why Checkmarx
Customer Stories
Awards
Industry Recognition
Integrations
For the Public Sector
COMPARE CHECKMARX
vs. Snyk
vs. GitHub
vs. Veracode
vs. Fortify
vs. Black Duck
vs. Semgrep
RESEARCH
Checkmarx Zero
Research Blog
Disclosed Vulnerabilities
Open-Source Tools
Resources
Analyst Reports
Product Demos
Solution Briefs
Videos
Webinars
Whitepapers
LEARN
Blog
Documentation
Glossary
Knowledge Hub
Customer Enablement
The 2025 Gartner® Magic Quadrant™ for Application Security Testing
Read more
IDC MarketScape for ASPM 2025
The Forrester SAST Wave 2025
Checkmarx One Solution Brief
COMPANY
About Us
Leadership
Press Releases
Newsroom
Events
Careers
PARTNERS
Partner Directory
Become a Partner
GET IN TOUCH
Support Portal
Contact Us
Position
Checkmarx is the enterprise application security leader and the host of Checkmarx One™ — the industry -leading cloud-native AppSec platform that helps enterprises build #DevSecTrust.
Who are we?
Checkmarx is the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services address the needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. At Checkmarx, we believe it’s not just about finding risk but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders.
We are honored to serve more than 1,800 customers, which includes 40 percent of all Fortune 100 companies, including Siemens, Airbus, Salesforce, Stellantis, Adidas, Walmart, and Sanofi.
What are we looking for?
Checkmarx is seeking an experienced, execution-focused Corporate Compliance Counsel to scale and mature our global compliance, data protection, and regulatory programs. This role will build strategic compliance frameworks, drive enterprise-wide adoption of best practices, and oversee operational activities across GDPR, AI governance, DORA, sanctions/export controls, ESG, and related domains.
The ideal candidate combines deep subject-matter expertise with the ability to design, scope, and manage complex workplans. This leader will collaborate closely with technical, product, R&D, marketing, GRC, ESG, and commercial teams, while providing clear, data-driven updates to senior management and the board.
How will you make an impact?
GDPR & Data Protection
· Serve as the company’s privacy expert, leading gap analyses, remediation, and ongoing compliance activities (DPIAs, LPIAs, ROPAs).
· Draft and maintain privacy policies, procedures, and documentation.
· Manage data subject requests, complaints, and dispute resolution processes.
· Support the business with DPA drafting, negotiation, and privacy guidance.
AI Governance
· Lead the development of the company’s AI compliance and governance framework, including risk assessment, governance structure, and responsible AI practices.
· Partner with R&D, product, and GRC teams to operationalize responsible AI principles.
· Deliver internal training and monitor emerging AI regulatory standards and requirements.
ESG Compliance
· Support ESG policy development, reporting, and annual disclosures.
· Coordinate responses for ESG rating platforms and investor questionnaires.
· Manage ESG-related supply chain compliance and flow-down requirements.
Sanctions & Export Controls
· Oversee sanctions screening, partner diligence, and export control workflows.
· Manage reporting obligations and program updates in response to evolving regulatory or geopolitical conditions.
Additional Responsibilities
· Serve as subject matter expert on DORA, the EU AI Act, and other regulatory frameworks.
· Monitor global regulatory developments and advise internal stakeholders.
· Draft policies and develop training for technical and non-technical audiences.
· Manage junior compliance team members supporting sanctions, diligence, GDPR, and ESG work.
· Maintain visibility into operational metrics such as screening volumes, diligence activity, and related reporting.
What is needed to succeed?
· 8–12+ years of experience in compliance, with strong expertise in GDPR and growing experience in AI governance – MUST.
· Demonstrated ability to design and execute multi-workstream compliance programs.
· Proven policy drafting and training development skills.
· Strong cross-functional leadership and communication abilities, including experience working with engineering, product, and commercial teams.
· Ability to synthesize regulatory requirements into clear, actionable processes.
· Native-level written and spoken English is a must.
Preferred Qualifications
· Experience in technology, SaaS, cybersecurity, or other fast-paced, regulated environments.
· Certifications such as CIPP/E, CIPM, or AI governance-related credentialing.
· Familiarity with ESG frameworks and sanctions/export control regulations.
Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great work-life balance, as well as great benefits and perks throughout the year. Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.
Apply here
