GRC Security Risk Manager (Remote) @ CrowdStrike | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
GRC Security Risk Manager (Remote) jobs in Sunnyvale, CA
58 applicants
company-logo

CrowdStrike · 16 hours ago

GRC Security Risk Manager (Remote)

ftfMaximize your interview chances
Artificial Intelligence (AI)Cloud Data Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Insider Connection @CrowdStrike

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Oversee and manage CrowdStrike's cybersecurity risk management, issues and exceptions management, policy governance, and control framework programs
Identify, assess, measure, monitor, and report on information security risks
Track and remediate security issues and exceptions
Govern security policy, standards, and controls through CrowdStrike's Governance, Risk, and Compliance (GRC) program
Collaborate with Security teams, Engineering, and Internal Audit to ensure alignment and effective risk management
Lead organizational efforts in defining, establishing, managing, and enforcing cybersecurity policies, standards, and procedures
Lead a team of four people, ensuring their engagement, development, and performance in alignment with expectations
Develop and implement a comprehensive cybersecurity risk management program to identify, assess, and mitigate risks across the organization
Build out the issues and exceptions management program to improve efficiency, effectiveness, user experience, and program scope
Mature the policy governance program through content enhancement, stakeholder engagement, and enterprise awareness
Help create and drive GRC strategy to increase business value and improve overall maturity of the GRC organization
Align with cross-functional teams, including IT, business units, procurement, Legal, Product Security, and other stakeholders to ensure a comprehensive approach to security and compliance
Proactively identify areas of improvement within Cyber GRC and lead efforts to address and remediate
Perform other duties within the scope of GRC.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cybersecurity Risk ManagementGRC Tool ImplementationPolicy GovernanceRisk AssessmentsSOC1/SOC2ISO27001/27002/27031GDPRPCI-DSSNIST Risk 800-34NIST 800-53Cloud InfrastructuresServiceNowSoftware DevelopmentSecure CodingCISSPCISMCRISCStrategic ThinkingProject Management

Required

At least 10+ years of job-related experience in a related field, with a preferred BA or BS / MA or MS degree in Computer Science/Engineering, Math, Information Security, Information Systems, Information Assurance, Information Security Management, Intelligence Studies, Data Science, Cybersecurity, or other related field.
Proven experience in security risk management, including risk assessments, issue management, policy governance, and risk mitigation, with expertise in GRC tool implementation (ServiceNow).
Practical experience with policy and regulatory requirements such as SOC1/SOC2, CSA-CCM, ISO27001/27002/27031, GDPR, PCI-DSS and frameworks such as NIST Risk 800-34, NIST 800-53, etc.
Advanced technical understanding of key technologies such as operating systems, networks, application development, databases, virtualization, and cloud infrastructures.
Proven track record of successfully collaborating with cross-functional teams across multiple regions to achieve business objectives.
Ability to build rapport and maintain relationships across functions within the company, with external vendors, and with governmental teams.
Ability to think strategically about risks and tie those risks to tactical organizational activities.
Program and project management experience in scoping, work break-down, critical path analysis, resourcing, managing time and cost estimates, project risks, and quality.
Expert-level understanding of current processes and a proactive approach to improving CrowdStrike's risk posture and GRC program.
Strong collaboration and communication skills, with the ability to work effectively across all levels of the organization.
Relevant certifications (e.g. CISSP, CISM, CRISC) and experience in a similar role.

Preferred

Experience with leading GRC products, such as ServiceNow, and/or cloud environments, including CrowdStrike products or services.
Practical experience in Software Development and Secure Coding best practices.

Benefits

Remote-friendly and flexible work culture
Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Resource Groups, geographic neighbourhood groups and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

Company

CrowdStrike

company-logo
CrowdStrike is a cybersecurity technology firm that provides cloud-delivered protection for cloud workloads, identity, and data.

H1B Sponsorship

CrowdStrike has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (49)
2022 (84)
2021 (64)
2020 (32)

Funding

Current Stage
Public Company
Total Funding
$1.24B
Key Investors
ARK Investment ManagementAccelCapitalG
2022-12-01Post Ipo Equity· $4.6M
2021-01-12Post Ipo Debt· $750M
2019-06-12IPO

Leadership Team

leader-logo
George Kurtz
President, CEO, and Founder
linkedin
leader-logo
Mike Petronaci
Chief Technology Officer, Proactive Security
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot