Cloud GRC Program Manager - (Remote East Coast) at NetApp

| Remote
Sorry, this job was removed at 9:38 p.m. (CST) on Monday, March 21, 2022
Find out who’s hiring remotely Nationwide
See all Remote jobs Nationwide
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
About NetApp

We're forward-thinking technology people with heart. We make our own rules, drive our own opportunities, and try to approach every challenge with fresh eyes. Of course, we can't do it alone. We know when to ask for help, collaborate with others, and partner with smart people. We embrace diversity and openness because it's in our DNA. We push limits and reward great ideas. What is your great idea?

"At NetApp, we fully embrace and advance a diverse, inclusive global workforce with a culture of belonging that leverages the backgrounds and perspectives of all employees, customers, partners, and communities to foster a higher performing organization." -George Kurian, CEO

Role Summary

As a GRC Program Manager, you will join a growing Security & Compliance team within NetApp Cloud Business to design, implement and assess security controls to increase our security posture, maintain compliance and promote customer trust. You will be a trusted advisor to Engineering, DevOps & Product Management teams across different services to identify and manage risks and maintain our compliance with authoritative standards.

If you are passionate about doing Security & Compliance at cloud scale in an innovative and automated way and like to setup things in a greenfield environment grounds-up, then this role is for you. The position provides the opportunity to influence and impact security and compliance efforts across NetApp teams, products, and functions within the company. You will be an integrator of people and processes, a problem solver, and the key point of contact for auditors and internal stakeholders.

Responsibilities

  • Design, implement, maintain, and improve compliance program to address key risks and prepare product teams for assessments against a wide variety of regulatory and compliance frameworks (ISO 27001, ISO 27018, SOC2, HIPPA, CMMC, etc.)
  • Partner with Engineering, SRE, Product, Cloud Security, Legal, Privacy and Corporate Security teams to collaborate on our mission and propose pragmatic solutions for timely resolution on risk and compliance issues.
  • Assist with improving internal policies, internal processes, contribute to a common controls framework and overall security governance.
  • Drive automation and assist with adoption of GRC tooling within business.
  • Perform gap assessments, risk assessment, and facilitate control monitoring activities.
  • Closely work with the Cloud Security team on initiatives and any risks impacting your area of responsibility.
  • Identify opportunities that create a positive impact on our activities and achieve efficiencies.


Requirements and Education

Critical Skills
  • 4+ years of experience in the building and maintaining security risk & compliance programs.
  • Experience of implementing security and compliance standards, frameworks, and controls (ISO/IEC 27001, SOC 2, NIST SP 800-53r4)
  • Familiarity with a broad range of technical concepts relevant to cloud computing environments: logical access control, DevOps development process, secure coding principles, logging & monitoring, incident response, cryptography, network security, and privacy, etc.
  • Strong project management and organizational skills - must be able to drive your own projects to completion
  • Excellent written and communication skills with an attention to detail
  • Ability to work in a fast paced and sometimes unorganized environment with multiple teams
  • Experience working with JIRA and Confluence.


Additional Knowledge and Skills
  • Similar experience within a cloud product company or Big four auditing/consulting experience with Technology companies, preferred
  • Knowledge of security controls over AWS, Azure or Google Cloud infrastructure, preferred
  • CISA, CISSP, CCSK, CIPP, or other professional certifications, preferred


Education

Bachelor's degree or equivalent experience.

Did you know
Statistics show women apply to jobs only when they're 100% qualified. But no one is 100% qualified. We encourage you to shift the trend and apply anyway! We look forward to hearing from you.

Why NetApp?

In a world full of generalists, NetApp is a specialist. No one knows how to elevate the world's biggest clouds like NetApp. We are data-driven and empowered to innovate. Trust, integrity, and teamwork all combine to make a difference for our customers, partners, and communities.

We expect a healthy work-life balance. Our volunteer time off program is best in class, offering employees 40 hours of paid time off per year to volunteer with their favorite organizations. We provide comprehensive medical, dental, wellness, and vision plans for you and your family. We offer educational assistance, legal services, and access to discounts. We also offer financial savings programs to help you plan for your future.

If you run toward knowledge and problem-solving, join us.
More Information on NetApp
NetApp operates in the Big Data industry. The company is located in Sunnyvale, CA, Boulder, CO, Wichita, KS, Research Triangle Park, NC and Cranberry Township, PA. NetApp was founded in 1992. It has 12824 total employees. It offers perks and benefits such as Flexible Spending Account (FSA), Disability Insurance, Dental Benefits, Vision Benefits, Health Insurance Benefits and Life Insurance. To see all 26 open jobs at NetApp, click here.
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Similar Jobs

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView NetApp's full profileFind similar jobs