Senior Compliance Analyst - Cyber Security

US-San Francisco
Req No.
2017-4025
Category
Information Technology

Company Overview

Senior Compliance Analyst - Cyber Security

Location:  San Francisco

 

Job Overview

 

Riverbed solutions help companies transition from legacy hardware to a new software-defined and cloud-centric approach to networking and application delivery for the digital age. The Riverbed Application Performance Platform™ takes Riverbed’s SD-WAN solution for agile networking that really works, and adds to this digital backbone industry-leading solutions for WAN optimization and hybrid networking, for branch IT orchestration, and for end-to-end visibility from device to cloud. All these solutions are integrated in a flexible, modular, digital architecture that delivers any apps, data and services from any public or private cloud across any network to any end-point, with the best possible user experience as determined by business policy.

 

Riverbed is a pre-IPO opportunity with over $1 billion in revenue headquartered in San Francisco with branch offices around the globe.

 

About this Position

 

As a Sr. Compliance Analyst, you’ll lead security engagements with IT Infrastructure, Engineering, and Product teams to ensure compliance of policies, procedures and processes related to regulatory and security assurance requirements.  You’ll plan the development and execution of the internal audit plan with respect to appropriate regulatory and assurance compliance audit coverage, and interface/assist external audit teams as needed. You will also identify and assesses vulnerabilities in production and development systems including computers, networks, software systems, information systems, and applications software and recommends solutions and best practices.

 

We’re looking for a motivated, self-driven and passionate candidate to work in a growing world-class security team.  A successful candidate is detail oriented, thrives on creating structure from chaos, has good interpersonal skills to influence and drive subject matter resources to deliver on their task and goals.

 

Primary Responsibilities

 

  • Become familiar with all of the requirements of the underlying customer and regulatory compliance requirements.
  • Understand State & Federal breach notification and security requirements.
  • Ensure production and development infrastructures are meeting compliance requirements (e.g. NIST, COBIT, ISO, SSAE16, PCI, SOX).
  • Analyze any proposed service and communicate the risk and impact to the IT, Engineering, DevOps, and Product teams.
  • Serve as the primary point of contact for infrastructure and application questions related to compliance.
  • Create all mandated compliance documentation.
  • Create and update audit plans, manage control procedures.
  • Plan and execute internal information security assessments and audit engagements.
  • Identify audit and compliance gaps and work with solution owners to track remediation plans and management action plans.
  • Investigate and champion automated auditing tools
  • Serve as the primary point of contact for Riverbed customer questions related to compliance.
  • Facilitate Riverbed customer security RFI, reviews, and audits.
  • Interface with Riverbed customers to ensure that they understand how the compliance effort is being achieved and document any changes to Riverbed security standards which might necessitate changes to the compliance effort.
  • Perform external risk analysis of vendors and 3rd parties and coordinate remediation plans to ensure compliance to Riverbed’s security policy.

 

Job Qualifications 

 

Required Skills/Experience:

 

  • 7-10 years equivalent experience in security, compliance, and data privacy.
  • Strong experience with Experience with NIST 800-171, NIST 800-53, FedRAMP, FISMA standards and related Federal compliance frameworks
  • Experience with emphasis in information security and regulatory or other compliance management.
  • Experience with risk management techniques.
  • Excellent understanding of project management principles.
  • Knowledge of regulatory and assurance compliance requirements including ISO 27001, SSAE16 (SOC 1 & 2 Type II), HIPAA/HITECH, PCI, and Sarbanes-Oxley.
  • Skilled in planning, problem solving, analysis, collaboration, and communication.
  • Proficient with Microsoft Office suite (Word, Excel, PowerPoint) & Share Point.
  • Project management experience, with the ability to handle multiple tasks and deadlines in a fast-paced, detail-oriented environment.
  • Must be able to attain PCI ISA certification after start of employment.
  • Must be able to attain US government security clearance after start of employment.
  • BS in Engineering or Computer Science or equivalent. (MBA or MS is highly desirable)

 

Desired Skills/Experience:

 

  • Experience with GRC tools (i.e.: ZenGRC, Archer, MetricStream, etc.) or knowledge of
  • Experience with SaaS/cloud provider environments and/or compliance planning and implementation.
  • Unified Compliance Framework (UCF) a plus.
  • Professional certification such as CISSP, CISA, GISP, etc... a plus
  • Current or a previous US government security clearance a plus

 

 

 

Why Riverbed Technology?

If you are a high-achiever who wants to be part of a dynamically growing, billion dollar plus company, then you should look closely at Riverbed.  We offer the rewarding experience of working with the best minds in the industry that are changing the world through cutting edge technology and applications. The company has been recognized multiple years for attracting and retaining today’s top talent as a great place to work by Glassdoor, Fortune magazine’s 20 Great Workplaces in Tech and by numerous other publications.

 

Learn more at www.riverbed.com

 

Riverbed is proud to be an affirmative action (AA) and equal employment opportunities (EEO) employer.  All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

 

 *LI-MK1

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Connect With Us!

Don't see the ideal job for you posted today? Connect with us for general consideration for future opportunities at Riverbed.