Architect Compliance Frameworks: Collaborate with cross-functional teams and Corporate Cyber Security to translate emerging regulatory requirements into sleek, technical security policies.
Lead Audit Excellence: Spearhead the effort to provide high-quality evidence and assertions for controls testing, ensuring our products sail through FedRAMP and ISO audits.
Drive Continuous Improvement: Own the evolution of our internal processes, monitoring and refining workflows to boost the quality and reliability of Trimble Cloud services.
Partner with Innovators: Act as a strategic consultant to internal development teams, ensuring security and privacy are baked into the SDLC from day one.
Navigate the Tech Frontier: Research and evaluate new compliance standards, integrating them into our cloud offerings to keep Trimble at the forefront of industry trust.

Requirements

Minimum of two years experience working with stakeholders in a privacy/security/risk/audit setting.
Excellent communication, planning, organizational and writing skills.
Proven ability to facilitate multiple projects and lead them to completion with limited direction.
Strong track record of developing and maintaining high quality internal policy and procedure documents.
Experience in guiding teams, delivering high-quality audit work products, and communicating effectively with various partners (e.g., external/internal audit, senior management, etc.).
Experience with compliance requirements/standards such as SOX, ISO, SOC, FedRAMP, GDPR and Safe Harbor / Privacy Shield.
Demonstrably good understanding of security assurance and trust frameworks such as SOC1, SOC2 - AICPA Trust Service Principles, NIST 800-53/171, ISO2700x, CSA STAR, etc.
Demonstrably good understanding of privacy and data protection laws such as CCPA, GDPR, GLBA Privacy and Safeguards Rules.
Experience across a breadth of IT processes such as: security operations, program management, security administration, system administration, change management, modern development (e.g., DevOps, Agile), data governance, privacy, and incident/problem management.
Strong interest in current and emerging technology topics including cybersecurity, DevOps, privacy compliance, and data governance.
Experience with public cloud services such as Amazon Web Services, Azure or GCP.

Benefits

Medical
Dental
Vision
Life
Disability
Time off plans
Retirement plans
Tax savings plans for health, dependent care and commuter expenses
Paid Parental Leave
Employee Stock Purchase Plan

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

compliance frameworkssecurity policiescontrols testingaudit work productsinternal policy documentssecurity assurance frameworksdata protection lawssecurity operationsprogram managementincident management

Soft Skills

communication skillsplanning skillsorganizational skillswriting skillsproject facilitationleadershipcollaborationstrategic consultingproblem-solvingcontinuous improvement

Certifications

FedRAMPISOSOCGDPRSOXAICPA Trust Service PrinciplesNIST 800-53NIST 800-171ISO2700xCSA STAR