Informacje o stanowisku

Build the future of data. Join the Snowflake team.

Snowflake is seeking a Senior Security Compliance Analyst to join our Global Security Compliance & Risk team and help drive compliance across Product Engineering and Corporate Engineering. 

The Sr. Security Compliance Analyst will be a critical and high-impact individual contributor who would perform compliance risk assessments, compliance impact assessments to determine compliance requirements, guide control owners to follow security and compliance best practices along with monitoring effectiveness of the controls. This role will report to the Security Compliance Manager within the Security and IT organizations. 

JOB RESPONSIBILITIES:

• Conduct Compliance Risk Assessments / Compliance Impact Assessments ( CIA) of cloud based applications against all control domains (NIST or similar) 
• Analyze project documentation like architecture diagrams and conduct interviews to perform risk and gap assessment
• Determine impact of new projects/changes on security & compliance posture of the organization.
• Conduct compliance assessments for complex systems including AI systems and identify and assess correlated risks
• Provide compliance and control requirements to new projects
• Provide compliant implementation standards/ best practices to achieve control requirements
• Integrate compliance and security into solution designs
• Assess risks of security gaps, and develop remediation plans.  Perform follow up activities related to drive remediation efforts.
• Support design and implementation of automated tools for compliance . Design self service oriented solutions for scaling compliance operations and derive repeatable audit artifacts.
• Provide Audit Support as required. Engage with Engineering teams for readiness assessments, testing, control review for annual and on-going compliance audits (like SOX, ISO, SOC). Provide compliance consultation to design effective and complaint processes.
• Identify risks, process improvements and design automated monitoring solutions for control areas like Change Management,Release Management, SDLC, Configuration Management, Logging, Software Supply Chain, Encryption, Monitoring etc. Drive implementation of effective controls.
• Assess and provide compliance requirements on data protection techniques and secure data handling practices
• Assist with development of compliance documentation, policies and processes in support of requirements and ensure that controls are operating effectively. 
• Develop a close partnership with engineering to educate and inform them around priority and importance of compliance requirements. Ability to identify risk-appropriate control implementation solutions while considering engineering and business priorities with compliance needs.
• Work cross-functionally to drive security control implementation for the organization.

QUALIFICATIONS

• 7+ years of related work experience in Information Security Governance, Risk and Compliance (GRC) or relevant Compliance roles in the tech industry. Big 4 consulting experience is a plus.
• Minimum 3 years prior experience auditing cloud environments (AWS, Azure, and GCP), performing compliance assessments , conducting risk assessments and / or driving audits like SOX,ISO, SOC, PCI DSS
• Knowledge of AI Security and Compliance Frameworks
• Knowledge of AI-specific security Threats and Vulnerabilities
• Ability to multitask and manage simultaneous projects
• Ability to organize, conduct and drive meetings and outcomes independently. Must be aware of and deliver quality stakeholder engagement experience in a fast-paced, innovative environment
• Strong analytical, communication (verbal and written), and project management skills
• Ability to learn, understand, and work with new emerging technologies, methodologies, and solutions in the Cloud/IT technology space.
• Certification preferred in one or more of the following: CISA, CISSP, CISM, Cloud platforms such as AWS, Azure or GCP
• Familiarity with regulatory requirements and standards related to AI and Data security
• Ability to guide in implementing security compliance AI measures and machine learning systems

LOCATION

• Warsaw, ability to support, attend meetings with US / Pune based team as required

SALARY

We believe all Snowflake employees have an impact in the long-term success of Snowflake, which is why new hire equity is designed to be a considerable part of your annual compensation.

When the price of Snowflake stock rises, we are all rewarded. At Snowflake, equity is an important part of our total compensation package which is comprised of:

• Base salary
• Bonus target or sales commission target
• Equity in the form of Restricted Stock Units (RSUs)

The total target monthly compensation range for this job is 25 000 - 35 000 PLN

The final compensation offered will vary based on individual experience, skills, and job-based knowledge.

BENEFITS

Snowflake is excited to offer a variety of benefits for our employees in Poland. For all details on benefits and perks youre eligible for as well as resources to help you understand your coverage, please review the following:

• Medical & Dental Insurance
• Mental Health Support
• Employee Capital Plan (PPK)
• Life Insurance
• Gym reimbursement / Multisport
• Phone reimbursement
• Modern Family Benefits
• Family Planning, Maternity/Paternity and Parenting Support with Maven
• Rethink: Parenting and family support for children with developmental disabilities or learning, social, or behavioral challenges.
• Adoption and surrogacy reimbursement
• Global Parental Leave
• Care Express
• And also: free snacks & coffee in the office
• Internal trainings, parties.

Warszawa - Oferty pracy w okolicznych lokalizacjach