Policy and Compliance Lead

About Danaher

At Danaher, our work saves lives. Fueled by a culture of continuous improvement, we transform ideas into significant impact, innovating at the speed of life. Our 63,000+ associates globally contribute across more than 15 unique businesses within life sciences, diagnostics, and biotechnology. We are committed to fostering an inclusive environment where you can build an incredible career at a leading science and technology company, developing from within. You’ll thrive in a culture of belonging where your unique viewpoint matters. Learn about the Danaher Business System, which empowers all our achievements.

Role Overview: Policy and Compliance Lead

The Policy and Compliance Lead is responsible for developing and implementing Policies and Standards that align with industry requirements. This USA Remote position offers unparalleled opportunities to work on cutting-edge security projects and significantly grow your expertise in both business strategy and information security. This role is an integral part of our Corporate Information Security team.

Key Responsibilities of the Policy and Compliance Lead

• Design, develop, and maintain comprehensive information security policies, standards, and procedures that align with regulatory requirements, industry frameworks (such as ISO 27001, NIST, SOC 2), and organizational objectives.
• Lead compliance initiatives and assessments, coordinating with cross-functional teams to ensure adherence to applicable laws, regulations, and contractual obligations while identifying and remediating gaps.
• Serve as a subject matter expert and trusted advisor to business units, providing guidance on policy interpretation, risk mitigation strategies, and security best practices.
• Drive continuous improvement of the policy management lifecycle, including stakeholder engagement, policy reviews, exception management, and metrics reporting to leadership.
• Collaborate with audit, legal, risk management, and technology teams to translate complex compliance requirements into practical, scalable solutions that support business growth.

Essential Requirements

• Strong knowledge of regulatory frameworks and industry standards such as ISO 27001, NIST CSF, SOC 2, GDPR, HIPAA, or PCI DSS.
• Demonstrated ability to translate complex technical and regulatory requirements into clear, actionable policies and procedures for diverse audiences.
• Proven experience in preparing for and managing IT security audits (e.g., SOC 2, ISO 27001, PCI DSS).
• Strong knowledge of compliance frameworks and ability to translate requirements into actionable controls.
• 3+ years of experience in information security, risk management, compliance, or policy development within a corporate environment.

Desired Skills and Experience

• Experience with governance, risk, and compliance (GRC) platforms and policy management tools, along with security automation and continuous compliance monitoring.
• Excellent written and verbal communication skills with proven experience influencing stakeholders at all organizational levels, including senior leadership.

Benefits at Danaher

At Danaher, we believe in designing a better, more sustainable workforce. We recognize the benefits of flexible, remote working arrangements for eligible roles and are committed to providing enriching careers, regardless of the work arrangement. This position is eligible for a remote work arrangement where you can work from home. Additional information will be provided by your interview team. The salary range for this role is $130,000-$160,000, and it is also eligible for bonus/incentive pay. We offer a comprehensive package of benefits including paid time off, medical/dental/vision insurance, and 401(k) to eligible employees.

Key skills/competency

• Information Security Policy
• Compliance Management
• Risk Mitigation Strategies
• Regulatory Frameworks (ISO 27001, NIST, SOC 2)
• IT Security Audits
• GDPR, HIPAA, PCI DSS
• GRC Platforms
• Stakeholder Engagement
• Policy Management Lifecycle
• Security Best Practices