Cloud Security GRC Analyst

Strider Technologies is on a mission to deliver strategic intelligence that enables faster, more confident decision-making for organizations around the world. As the leading strategic intelligence company, Strider empowers organizations to secure and advance their technology and innovation. We leverage cutting-edge AI technology and proprietary methodologies to transform publicly available data into critical insights. These insights enable organizations to proactively address and respond to risks associated with state-sponsored intellectual property theft, targeted talent acquisition, and supply chain vulnerabilities.

Job Summary:

As a key member of Strider’s Security Team reporting to the Chief Information Security Officer, you will lead and continue the development of several key programs for security including risk management, compliance, third party assessments, policy maintenance and training. Our team leverages transparency, trust, and innovation to elevate Strider’s security program through partnership and professionalism. The position offers flexibility and room to develop capabilities outside of the core responsibilities in other subject matter areas. 

Who You Are:
Strider seeks an security compliance professional with the desire and vision to lead researching, developing, and deploying GRC best practices across the company. You are an emerging leader with an opinion about the best way to get things done while retaining the flexibility to adapt your vision to incorporate the perspective of your peers to enable mission success.

Key Responsibilities: 

• Lead initiatives for governance, risk and compliance maximizing risk reduction for cloud environments, SaaS-based products and endpoints
• Develop and maintain a compliance strategy that aligns with corporate goals, maintaining existing certifications and expanding compliance to new standards
• Lead internal audit reviews in preparation for meeting compliance standards as well as engagements with third party assessors ensuring certification
• Lead risk management for products, corporate IT, vendors and partners
• Identify and reduce risks in infrastructure, products and internal tools
• Conduct vendor and partner security and intelligence risk reviews
• Manage our security policy library, updating and adding policies as necessary
• Support business development activity through fulfilling security questionnaires
• Update and maintain a comprehensive training program for all employees covering security, privacy, and insider risk ensuring our training maintains pace with company growth while meeting our obligations to regulators and customers
• Partner with engineering, product management, IT and others to enable achievement of GRC objectives

 What you will need to be successful:

• 5+ years experience supporting GRC programs for companies with SaaS solutions built in a major cloud provider such as AWS or Azure
• Experience leading and obtaining ISO 27001 certification
• Knowledge of relevant standards such as ISO 27000 family, NIST 800, and applicable laws related to regulatory compliance, information security, and privacy
• Experience leading security projects and initiatives
• Experience leading research and implementation of compliance standards
• Experience leading compliance engagements securing third-party security certification
• Knowledge of vendor risk management
• Familiarity with compliance automation software
• Experience working in a startup or fast-paced environment

 Extra Credit:

• Experience supporting a successful FedRAMP moderate certification
• ISO 27001 certified as internal auditor
• Knowledge of GDPR and CCPA
• Knowledge of application security

Why Strider?
We are redefining what it means to work in security. Here’s why: 

Security is embedded in our culture
We don’t just talk about security; we live it. Our leadership and team deeply understand our threat landscape, allowing us to focus on executing our mission without distractions. 

We are a part of the client community 
Our clients are security professionals. You’ll have a direct impact on product development, marketing, and sales, with your insights driving innovation. 

Flexibility and Collaboration
Our flexible, hybrid work schedule enables work-life balance.  You’ll form meaningful relationships with talented, kind colleagues who align with our company values. 

Stability and Growth
Strider boasts a multi-year, fiscally responsible growth plan. Enjoy the confidence of working in a financially sound organization with a one-of-a-kind market position. 

Collaborate with the Best
Collaborate with AI, machine learning and intelligence experts to gain insights into great powers competition at the intersection of technology and global affairs. 

Benefits

• Competitive Compensation
• Company Equity Options
• Flexible PTO
• Wellness Reimbursement
• US Holidays (Office Closed)
• Paid Parental Leave
• Comprehensive Medical, Dental, and Vision Insurance
• 401(k) Plan

Strider provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, Strider complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training.