Identity and Access Management Architect
Charter
CloudCyber Security
Senior Governance, Risk and Compliance Specialist – ISMAP
CrowdStrike
full-time
Posted on:
Origin: • 🇺🇸 United States
Visit company websiteSalary
💰 $100,000 - $155,000 per year
Job Level
Senior
Tech Stack
CloudCyber Security
About the role
- Lead ISMAP certification processes, including documentation preparation, control implementation, and audit coordination Maintain multiple compliance frameworks including SOC 2, ISO/IEC 27001:2022, ISO/IEC 27017:2015 CSA STAR, C5, PCI DSS, TISAX, and other relevant certifications Facilitate internal and external audits, including evidence collection, control assessment, monitoring, and reporting Conduct third-party controls evaluations and risk assessments Collaborate with various internal teams to define and prioritize remediation efforts Respond to customer inquiries regarding compliance and security controls Develop and maintain compliance documentation in both English and Japanese Performing other duties within the scope of governance, risk, and compliance as needed.
Requirements
- 5 to 8 years of information security program management experience, with most of the years preferably specialized in ISMAP Native/Business level Japanese language proficiency Demonstrated experience with ISMAP certification process and requirements Strong understanding with compliance certifications and frameworks like SOC 2, CSA STAR, ISO/IEC 27001:2022, ISO/IEC 27017:2015, PCI DSS, TISAX, IRAP, and NIST 800-53 An ability to build rapport and maintain relationships across a multitude of functions with an organization Fundamental technical understanding of key technologies such as operating systems, networks, application development, databases, virtualization, and cloud infrastructure Bachelor’s or Master’s degree in a related field (or equivalent experience) Bonus Points: Experience with Japanese government or regulated industry compliance requirements Program management experience in scoping audits and/or assessments, maintaining a compliance program, and leading project initiatives Ability to think strategically about a uniform compliance program Relevant certifications (CISA, CISSP, ISO Lead Auditor) Experience with GRC tools and automation Knowledge of global privacy regulations (GDPR, APPI) Cloud security and compliance experience Project management certifications Experience with CrowdStrike products or services Strong documentation skills in both English and Japanese
