Compliance Engineer II

About The Position

Requirements

• Minimum of two years experience working with stakeholders in a privacy/security/risk/audit setting.
• Excellent communication, planning, organizational and writing skills.
• Proven ability to facilitate multiple projects and lead them to completion with limited direction.
• Strong track record of developing and maintaining high quality internal policy and procedure documents.
• Experience in guiding teams, delivering high-quality audit work products, and communicating effectively with various partners (e.g., external/internal audit, senior management, etc.).
• Experience with compliance requirements/standards such as SOX, ISO, SOC, FedRAMP, GDPR and Safe Harbor / Privacy Shield
• Demonstrably good understanding of security assurance and trust frameworks such as SOC1, SOC2 - AICPA Trust Service Principles, NIST 800-53/171, ISO2700x, CSA STAR, etc.
• Demonstrably good understanding of privacy and data protection laws such as CCPA, GDPR, GLBA Privacy and Safeguards Rules.
• Experience across a breadth of IT processes such as: security operations, program management, security administration, system administration, change management, modern development (e.g., DevOps, Agile), data governance, privacy, and incident/problem management.
• Strong interest in current and emerging technology topics including cybersecurity, DevOps, privacy compliance, and data governance.
• Experience with public cloud services such as Amazon Web Services, Azure or GCP.

Nice To Haves

• CISA, CISSP, CIPP, PMP or related certification.
• Experience within a 3PAO, national consulting firm, accounting firm or large corporation that assists in FedRAMP assessments.
• Experience with audit operations software is a bonus.
• AWS Certification (or equivalent in another public cloud).
• Ability to work in a fast-paced environment and navigate through ambiguity.

Responsibilities

• Architect Compliance Frameworks: Collaborate with cross-functional teams and Corporate Cyber Security to translate emerging regulatory requirements into sleek, technical security policies.
• Lead Audit Excellence: Spearhead the effort to provide high-quality evidence and assertions for controls testing, ensuring our products sail through FedRAMP and ISO audits.
• Drive Continuous Improvement: Own the evolution of our internal processes, monitoring and refining workflows to boost the quality and reliability of Trimble Cloud services.
• Partner with Innovators: Act as a strategic consultant to internal development teams, ensuring security and privacy are baked into the SDLC from day one.
• Navigate the Tech Frontier: Research and evaluate new compliance standards, integrating them into our cloud offerings to keep Trimble at the forefront of industry trust.

Benefits

• Trimble offers comprehensive core benefits that include Medical, Dental, Vision, Life, Disability, Time off plans and retirement plans.
• Most of our businesses also offer tax savings plans for health, dependent care and commuter expenses as well as Paid Parental Leave and Employee Stock Purchase Plan.