Snowflake SR GLOBAL SECURITY COMPLIANCE & RISK ANALYST 

United States, California 

271796935

• Support Snowflake business teams to achieve and maintain their security and compliance posture in accordance with regulatory requirements including but not limited to Sarbanes Oxley (SOX), SOC, ISO 27001, ISO, HIPAA, PCI-DSS, HITRUST, FedRAMP, etc. Validate on-going compliance of policies and process / procedures in support of requirements and ensure that controls are operating effectively.

• Drive implementation and maturity of security controls, and the resolution of controls deficiencies and gaps, by working closely with Engineering, Product, IT, Security, and TPM teams.

• Achieve and maintain a comprehensive understanding of new and emerging compliance requirements and control gaps or risks.

• Review architecture, integrate compliance and security into solution designs, assess risks of security gaps, and develop remediation plans. Perform follow up activities related to remediation of gaps , and drive remediation efforts.

• Advise process/control owners with the preparation and ongoing maintenance of controls and control documentation (e.g., policies, procedures, compliance narratives, and RBAC matrices)

• Ensure timely delivery of the necessary evidence to the audit teams to support our audit cycle.

• Identify process improvements and efficiencies in the existing processes to build robust processes, automate compliance and drive implementation of effective controls.

• 8+ years of related work experience in Information Security Governance, Risk and Compliance (GRC) or relevant Compliance roles in the tech industry.

• Prior experience assessing or auditing cloud environments (AWS, Azure, and GCP), SaaS platforms, performing compliance assessments , conducting risk assessments and / or driving audits like SOX,ISO, SOC, PCI DSS, FedRAMP

• Ability to work independently, manage multiple priorities, and work on multiple projects. Excellent organizational skills and critical attention to detail and deadlines

• Ability to organize, conduct and drive meetings and outcomes independently. Must be aware of and deliver quality stakeholder engagement experience in a fast-paced, innovative environment

• Strong analytical, communication (verbal and written), and program management skills

• Ability to learn, understand, and work with new emerging technologies, methodologies, and solutions in the Cloud technology space.

• Knowledge of key IAM focus areas, including identity management solutions, access revocation, entitlements management and reconciliation, and account monitoring. Understanding of identity and authentication principles and technologies.

• Understanding of vulnerability management processes and technologies

• Certification preferred in one or more of the following: CISA, CISSP, CISM, Cloud platforms such as AWS, Azure or GCP

• Demonstrated ability to self-direct project outcomes, with minimal supervision to achieve goals

• Ability to work closely with auditors, regulators, and internal stakeholders and articulate technical concepts

• US, ability to support , attend meetings with Poland / Pune based team as required

The following represents the expected range of compensation for this role:

• The estimated base salary range for this role is $148,000 - $199,500.
• Additionally, this role is eligible to participate in Snowflake’s bonus and equity plan.