You might also like
in Santa Clara, CA
Senior Manager, Risk Compliance Management
Estimated Pay | $25 per hour |
---|---|
Hours | Full-time, Part-time |
Location | Santa Clara, California |
Compare Pay
Estimated Pay$19.3
$25.11
$39.4
About this job
Primary responsibilities include:
Responsible for Cloud Software Group's Governance, Risk and Compliance program. Areas of focus include::
Information Security frameworks and product compliance
Commercial Compliance
Government Compliance
Internal audit oversight
Risk Management & Risk Register
Business Continuity and Disaster Recovery
Customer audits and security questionnaires
Information Security Policies
Information Security awareness and training
Oversee our GRC vendor partner and utilize our GRC tool, fullCircle. Much of the operational work is outsourced to our vendor partner.
Execute the Cloud Software Group (Cloud SG) Compliance Risk Management strategy and provide governance, risk management, and compliance oversight
Manage the information security frameworks and relevant standards; oversee applicable security, privacy, contractual, and compliance requirements (i.e., SOC 2, ISO/IEC 27001, ISO/IEC 27701, PCI DSS, HIPAA, NIST SP 800-53 / FedRAMP, IRAP) and industry best practices
Develop and manage an information security risk management program including development, evaluation, and adherence to multiple areas of practice. Create and maintain a risk register and remediation plans.
Establish and oversee formal risk analysis and self-assessments program for various information services, systems, processes, and recognized industry standards
Identify, assess, manage, and track remediation of risks and/or audit findings related to IT or product infrastructure, product engineering, applications, and suppliers and drive explicit requirements and timelines in all environments
Liaise with all business units and business departments to identify, track, and provide remediation guidance for new projects, services and/or third-party contracts in terms of information security assurance
Build out and maintain current GRC tools and processes to provide visibility and transparency
Coordinate FedRAMP and internal audit reviews.
Manage the Business Continuity and Disaster Recovery program.
Manage the responses to customer audits and security inquiries
Oversee the information security policies and ensure they are current and reflect industry best practices.
Implement the security awareness and training program.
Perform any other related duties as required or assigned
Required Qualifications
5 years related experience in information technology or information security
5 years in a information governance, risk, and compliance management experience
Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, SOC 2, GDPR, ISO, and PCI DSS standards
Experience with information security policy, standards, and controls implementation and monitoring
Enthusiasm for automating compliance management activities
Preferred Qualifications
Bachelor degree in information technology, computer science, management information systems or an advanced technology-related degree
Industry recognized certification in security (e.g., CISSP, CISA, CCSK, CIPP, etc.)
Strong knowledge of current and emerging compliance frameworks and control automation methods and solutions
Strong program management skills
Strong analytical thinking, written, and oral communication and presentation skills
High level of energy, drive, enthusiasm, initiative, commitment and professionalism
Self-starter with solid organizational and planning skills
Competitive and focused on achieving goals
Experience working in an international / global organization
Skilled at planning, tracking plans, working cross department to review processes and controls, gathering and organizing documentation and test results
Able to understand contracts and technical documentation and is able to assess it for consistency and alignment with processes and controls outlined in requirements and audit materials
Ability to adapt and embrace change in a fast-paced, changing environment
About Us:
Citrix and TIBCO recently merged to create Cloud Software Group, now one of the world's largest cloud solution providers, serving more than 100 million users around the globe. When you join Cloud Software Group, you are making a difference for real people, each of whom count on our suite of cloud-based products to get work done - from anywhere. Members of our team will tell you that we value diverse lived experiences, passion for technology, and the courage to take risks. Everyone is empowered to learn, dream, and build the future of work. We are on the brink of another Cambrian leap -- a moment of immense evolution and growth. And we need your expertise and experience to do it. Now is the perfect time to move your skills to the cloud.
Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination. All qualified applicants will receive consideration for employment without regard to age, race, color, creed, sex or gender, sexual orientation, gender identity, gender expression, ethnicity, national origin, ancestry, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions (including lactation status), marital status, military service, protected veteran status, political activity or affiliation, taking or requesting statutorily protected leave and other protected classifications.
If you need a reasonable accommodation due to a disability during any part of the application process, please contact us at (800) 424-8749 or email us at for assistance.