Cloud Compliance Program Manager

Cloud Compliance Program Manager

21 Jan 2024
California, Fremontca, 94536 Fremontca USA

Cloud Compliance Program Manager

Vacancy expired!



Title: Cloud Compliance Program Manager
Contract: 6 months (possible extension)
Location: Fremont, CA 94538 (Remote during Covid)
Start Date: ASAP
No C2C/Corp-to-Corp
Must be authorized to work in US without restriction or sponsorship

Responsibilities:
Responsible for planning and executing the ISO 27001 and SOC 2 Type 2 certification programs.
Lead and run the Information Security Management System framework and processes (ISMS) for the associated business unit.
Work closely with a broad range of technical and business stakeholders.
Interact with internal and external auditors including a broad range of teams to execute and assist in managing business unit level policies, procedures and controls, as well as driving control testing to ensure effective and consistent compliance.
Balance between the needs of the various stakeholders and the business unit risks/requirements.
Provide an objective perspective as a trusted and respected key contributor.
Participation of the overall planning, scoping, risk assessment, execution, documentation, and conclusions for all data security certification programs.
Contributor for the annual risk assessment and scoping exercise
Coordinate and follow-up with all internal stakeholders, external auditors and to ensure open communications, transparency, collaboration, meaningful guidance and productive outcomes related to corrective actions.
Ensure accurate documentation in support of data security programs.
Oversee the design and effectiveness of both prevent and detect controls and associated tools, acting as a key stakeholder in test plan development.
Implement control remediation plans as needed to resolve control issues.
Maintain a current and thorough knowledge of ISO 271001, SOC 2 Type 2 and future certifications that may be needed to support the needs of the business.
Participate in the Policy Council to ensure alignment with the corporate policy program.
Maintain our compliance toolset for proper management of Risks and Exceptions.
Assist in providing senior leadership with frequent certification status updates, analysis and risks to our compliance portfolio. Required Skills Required Skills
Skills:
Experience in program management and coordination.
Data security certification experience is desirable.
Demonstrable knowledge of the ISO 27001 and SOC 2 Type 2 frameworks.
Awareness of general information security principles and solid business acumen.
Strong analytical skill set.
A firm grasp of process streamlining and improvement techniques.
Knowledge of GRC (governance, risk and compliance) tools, processes and frameworks.
Systems experience including upgrades, new system implementations, integration technologies, Cloud services, etc.
Working knowledge of segregation of duties (SOD), identity and access management (IAM), change management, disaster recovery and configuration management concepts.
Change influencer

Job Details

Jocancy Online Job Portal by jobSearchi.