Senior Manager, Security Compliance

Cohesity•Santa Clara, CA

4h•Hybrid

About The Position

Interested candidates based outside of the designated areas are welcome to apply, provided they have the indefinite right to work in the job location. Cohesity is a leader in AI-powered data security and management. Aided by an extensive ecosystem of partners, Cohesity makes it easy to secure, protect, manage, and get value from data — across the data center, edge, and cloud. Cohesity helps organizations defend against cybersecurity threats with comprehensive data security and management capabilities, including immutable backup snapshots, AI-based threat detection, monitoring for malicious behavior, and rapid recovery at scale. We’ve been named a Leader by multiple analyst firms and have been globally recognized for Innovation, Product Strength, and Simplicity in Design. Join us on our mission to shape the future of our industry. NOTE: the following experience is required for this role: Supporting cybersecurity controls management programs and frameworks including ISO 27001, SOC 2, and NIST SP 800-53 Implementing new security audits and assessments Leading SOC 2 and ISO 27001 audit programs Cloud platforms (AWS, Azure, Google Cloud) and security features GRC Tools and control frameworks FedRAMP, CMMC, HIPAA, TISAX, or IRAP audits (very highly preferred)

Requirements

5+ years experience supporting cybersecurity controls management programs and frameworks including ISO 27001, SOC 2, and NIST SP 800-53
Experience leading SOC 2 and ISO 27001 audit programs
Excellent communication and interpersonal skills to effectively collaborate with technical and non-technical stakeholders
Experience with cloud platforms ( AWS, Azure, Google Cloud ) and their security services
Experience with GRC tools and common control frameworks
Relevant certifications such as CISA, CISSP, CISM, CCSP , or similar are highly desirable

Nice To Haves

Bonus if experience with performing FedRAMP, CMMC, HIPAA, TISAX, or IRAP audits
Demonstrated ability to leverage AI tools to enhance productivity, streamline workflows, and support decision making

Responsibilities

Lead the planning and execution of existing (ISO 27001, SOC 2, HIPAA, TISAX, etc.) and new security audits and assessments
Manage audit timelines, scope, stakeholders, and deliverables
Maintain comprehensive documentation of controls, testing procedures, and evidence to support compliance efforts
Support and collaborate with Cohesity teams to achieve and maintain our security and compliance posture
Validate on-going compliance of policies and process / procedures in support of requirements and ensure that controls are operating effectively
Collaborate with, and influence key stakeholders to support, track, and report on remediation efforts
Support various Security Compliance projects and seek opportunities to improve the maturity of the Compliance program
Further the development of the common control framework, collaborating with cross-functional teams to ensure controls are scalable, adaptable, and aligned with compliance and business requirements
Perform gap assessments on new Security Compliance requests from business teams against common control framework
Monitor changes in regulatory requirements and industry standards, and ensure the organization’s compliance programs are updated accordingly