Leader of TPM, Infrastructure Risk and Compliance
San Jose, California, United States
This is a leadership role within the infrastructure engineering team, responsible for managing a group of Risk & Compliance Program Managers. The Infrastructure Risk and Compliance team collaborates across various teams to develop a practical, value - driven, and collaborative framework. This framework enables and safeguards infrastructure domains to achieve their strategic goals by identifying, assessing, prioritizing, and remediating risks. As a result, it ensures that our organization meets our Trust and Safety objectives and complies with legal and regulatory obligations. Functioning as the department's Second Line of Defense, the team proactively identifies risks, effectively mitigates them, and rigorously manages them. Moreover, the team plays a crucial role in preparing the entire organization for both external and internal audits.
Core Focus Areas include:
- Infrastructure Physical Security
- Infrastructure Cyber and System Security
- Regional Compliance for Infrastructure Deployment and Operations: Ensures that infrastructure projects adhere to territorial regulations and compliance standards.
- Commercial Integrity and Third - Party Risk Management: Ensures ethical commercial practices and mitigates risks associated with external parties.
Responsibilities
- Establish our management framework by concentrating on our core domains of Privacy, Data protection, Physical Security, and Cybersecurity, and by adhering to industry standards such as SOC2, ISO 27001, NIST2, and other regional regulatory requirements.
- Identify and evaluate risks through the operation of our Risk and Compliance Management Framework.
- Develop efficient strategies to manage and remediate those risks through close collaboration with functional teams and by building cross-functional partnerships with legal, GR, PR, and other teams to leverage their expertise.
- Serve as the point of contact within the organization for handling internal and external audits. Implement improvement plans based on audit results.
- Manage a global team of Risk and Compliance TPMs.
Locations: San Jose, Seattle
Core Focus Areas include:
- Infrastructure Physical Security
- Infrastructure Cyber and System Security
- Regional Compliance for Infrastructure Deployment and Operations: Ensures that infrastructure projects adhere to territorial regulations and compliance standards.
- Commercial Integrity and Third - Party Risk Management: Ensures ethical commercial practices and mitigates risks associated with external parties.
Responsibilities
- Establish our management framework by concentrating on our core domains of Privacy, Data protection, Physical Security, and Cybersecurity, and by adhering to industry standards such as SOC2, ISO 27001, NIST2, and other regional regulatory requirements.
- Identify and evaluate risks through the operation of our Risk and Compliance Management Framework.
- Develop efficient strategies to manage and remediate those risks through close collaboration with functional teams and by building cross-functional partnerships with legal, GR, PR, and other teams to leverage their expertise.
- Serve as the point of contact within the organization for handling internal and external audits. Implement improvement plans based on audit results.
- Manage a global team of Risk and Compliance TPMs.
Locations: San Jose, Seattle
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits Compliance ISO 27001 Privacy Risk management SOC 2
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsSecurity Operations Engineer jobsSenior Security Analyst jobsSystems Administrator jobsSenior Cybersecurity Engineer jobsCybersecurity Editor jobsCybersecurity Content Editor jobsSenior Information Security Analyst jobsCyber Security Specialist jobsInformation Security Manager jobsSenior Network Security Engineer jobsIT Security Analyst jobsChief Information Security Officer jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsSecurity Consultant jobsSenior Product Security Engineer jobsIT Security Engineer jobsSecurity Specialist jobsInformation Systems Security Engineer jobsCyber Threat Intelligence Analyst jobsSenior Cyber Security Engineer jobsSenior Software Engineer jobsSecurity Operations Analyst jobsSenior IT Auditor jobs
EDR jobsCEH jobsSaaS jobsEncryption jobsJava jobsSplunk jobsTop Secret jobsThreat detection jobsSDLC jobsTerraform jobsRMF jobsIDS jobsMalware jobsIPS jobsFinance jobsSOC 2 jobsSQL jobsDocker jobsForensics jobsCompTIA jobsIntrusion detection jobsOWASP jobsActive Directory jobsHIPAA jobsClearance Required jobs
Ansible jobsVPN jobsGIAC jobsITIL jobsCRISC jobsIT infrastructure jobsDoDD 8570 jobsTCP/IP jobsOSCP jobsMITRE ATT&CK jobsSOAR jobsIndustrial jobsBanking jobsZero Trust jobsSOX jobsData Analytics jobsJira jobsCCSP jobsDNS jobsGCIH jobsNIST 800-53 jobsJavaScript jobsArtificial Intelligence jobsCISO jobsUNIX jobs