Sr. Analyst - Digital Risk & Compliance

F5 Networks•Seattle, WA

About The Position

At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive. Position Summary : We are seeking an experienced risk and compliance professional to join our team within the F5 Digital organization as a Senior Analyst. In this role, you will contribute to establishing and continuously developing the global Digital risk management and compliance framework, deployment roadmap, risk monitoring and reporting, and compliance assurance for the Digital organization. As a Senior Analyst, you will support effective decision-making by helping to define, maintain , communicate, and promote Digital risk and compliance frameworks and control processes across different levels within Digital. You will partner with audit and risk teams across the enterprise to ensure alignment and consistency in risk management practices. We are looking for a detail-oriented and analytical individual who possesses creativity and problem-solving skills to assist in designing and improving control processes and solutions that address the unique needs of our organization. You will play a critical role in supporting the future of compliance and risk management by conducting testing, monitoring , and implementing procedures to identify risk exposures and assess the effectiveness and efficiency of internal controls.

Requirements

Proven experience supporting IT risk and compliance initiatives and collaborating with internal audit and external auditors.
Strong ability to collaborate and contribute to team objectives , with a focus on supporting and coordinating efforts across teams.
Solid knowledge of technology and cyber risks, with the ability to work effectively with cross-functional teams in risk management and compliance programs.
Familiarity with common frameworks and standards such as NIST and ISO.
Experience assisting with ISO 27001, NIST, SOX, or equivalent standards consulting, reviews, and assessments.
Foundational knowledge and practical understanding of key legal and regulatory compliance, e.g., SOX, FedRAMP, GDPR, CCPA.
Working knowledge of ServiceNow Integrated Risk Module or comparable tools.
Working knowledge of Oracle EBS , Salesforce Sales Cloud , or comparable applications.
Strong project coordination and organizational skills with exposure to program management principles.
Ability to contribute effectively to decision-making processes and collaborate with senior management to achieve goals.
Capability to explain technical or complex issues in simple, non-technical terms.
Experience working with remote, virtual, and cross-functional teams while influencing outcomes without direct authority.
Good communication skills, including meeting facilitation, negotiation, and resolving conflict.
Strong analytical and problem-solving skills that reflect attention to detail and accuracy.
Flexibility and adaptability in responding to changing requirements while maintaining accountability.
Ability to build and nurture strong relationships with diverse internal and external partners across various levels of the organization.
BS/BA degree in a risk, compliance, audit, computer-related field, or equivalent industry experience.
4+ years of related experience, with 2+ years working in Governance, Risk, and Compliance or internal audit functions at technology-based companies or in technical domains.

Nice To Haves

Certified as a risk professional (e.g., RIMS-CRMP, CRISC, CCSFP, or PMI-RMP) is preferred, but not mandatory.
Solid foundational knowledge of IT principles and processes.
Additional relevant certifications, such as CISM, CISA, CCSFP, CIA, CISSP, PMP, or equivalent, are a plus.

Responsibilities

Support the development and maintenance of a growing risk and compliance framework, collaborating with team members to implement key initiatives.
Translate security and compliance requirements into actionable tasks, prioritize work items, track progress, and assist in resolving blockers across multiple teams.
Collaborate with existing teams to assist in managing and executing recurring risk and compliance programs, including IAM and access control, change management, business continuity and disaster recovery, asset management, incident management, and annual policy reviews.
Assist in developing policies, procedures, and processes to ensure controls comply with regulations and organizational policies, working closely with teams across the Digital organization.
Contribute to risk identification efforts by assisting in the evaluation of critical areas of exposure, ensuring timely reporting and supporting mitigation planning in coordination with senior team members.
Help define Sarbanes-Oxley (SOX) ITGC, ISO 27001, and other applicable compliance objectives , ensuring appropriate methods and measurements are in place.
Review, document, and identify gaps in current control processes, supporting remediation efforts in collaboration with operational partners to drive gaps to closure and improve processes.
Act as a resource for Digital Risk and Compliance, providing support to internal and external audit teams as .
Contribute to achieving compliance certifications and support broader enterprise certification efforts, coordinating with the appropriate teams .
Draft responses to findings and documentation for SOX and other audit and certification requirements, ensuring quality and accuracy , while providing recommendations on remediation plans .
Help foster a risk and compliance mindset within the Digital organization, supporting initiatives that embed a culture of proactive risk management and compliance across processes.