Salesforce

Senior Security GRC Analyst

Salesforce

full-time

Posted on:

Location Type: Hybrid

Location: McLeanVirginiaUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudGoogle Cloud Platform

About the role

  • Assess security risk and ensure that controls are designed to appropriately mitigate security risk.
  • Assess control effectiveness to ensure ongoing compliance.
  • Drive existing or newly identified initiatives between stakeholder organizations creating synergies and reducing risk of non-compliance with internal or external requirements
  • Consult with business or security stakeholders on information security requirements and applicability to their business processes, products, or services
  • Create and maintain relationships with key business, legal, Employee Success, Internal Audit, technical/engineering stakeholders, and other organizations throughout the company who provide expertise in security requirements and solution management
  • Focus on continuous improvement of operational processes and designing innovative and automated functionality for added efficiency
  • Identify and create metrics and dashboards to quantify and measure the impact of security processes that you drive.
  • Effectively communicate compliance positions and programs to applicable business stakeholders

Requirements

  • Minimum 3 years of experience in security governance, risk management, compliance, audit, internal controls, or other security related areas
  • Minimum of 3-5 years of total work experience
  • Experience working with Government Cloud environments such as AWS, Azure, GCP (SaaS, IaaS, PaaS etc)
  • Experience in security related analysis, creating metrics and dashboards and summarizing large data sets
  • Ability to work with both business and technical areas and translate between the two areas
  • Knowledge of multiple regulatory compliance frameworks (NIST CSF & 800-53, ISO27001, SOX, SOC, HITRUST, HIPAA, FedRAMP (including FedRAMP 20x), DOD SRG IL4/IL5, PCI, etc.)
  • Operational process design, improvement, and implementation experience
  • Demonstrated desire to learn new skills and innovate
  • Agile, proactive, comfortable working with ambiguous specifications and can prioritize quickly and effectively
  • Ability to work effectively with a wide range of individuals including developers, systems administrators, executives, customers, regulators, auditors, etc.
Benefits
  • time off programs
  • medical, dental, vision
  • mental health support
  • paid parental leave
  • life and disability insurance
  • 401(k)
  • employee stock purchasing program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
security governancerisk managementcomplianceauditinternal controlssecurity analysismetrics creationdashboard developmentoperational process designregulatory compliance frameworks
Soft skills
communicationstakeholder managementcontinuous improvementinnovationagilityproactivityprioritizationtranslating technical conceptsrelationship buildingcollaboration