Sr. Federal Compliance Specialist (Remote)
USA TX Remote
#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.
About the Role:
The Senior Compliance Specialist is charged with assisting in the identification, assessment, measurement, monitoring, and reporting of risk through CrowdStrike’s Governance, Risk, and Compliance (GRC) program. This Senior ComplianceSpecialist’s primary function will involve strategically supporting product and service assessments in CrowdStrike’s United States federally authorized (FedRAMP and DoD) environments. In addition, this role may be called on to support or lead corporate operations and IT compliance audits and assessments (including international Frameworks), vendor and partner risk assessments, or support customer assurance efforts to address questions from CrowdStrike customers as needs and interests require. The Senior Compliance Specialist will also perform compliance advisory functions.
The ideal candidate will deeply understand current assessment frameworks, technologies, and processes while being continuously on the lookout for innovative and flexible ways to automate or improve processes that support a fast-paced, secure, and empowered environment.
What You’ll Do:
This role covers audit, compliance, vendor risk, and customer assurance functions in the context of security and privacy within enterprise-wide operational areas such as:
Assisting with internal and external audits and assessments including control assessment, monitoring, and reporting including collection and organization of evidence;
Conducting third party controls evaluations to determine risk;
Working with various internal teams or external parties to define and prioritize remediation efforts, tracking remediation activities, and inspecting/validating solutions that have been implemented;
Responding to CrowdStrike and customer questions regarding GRC topics and CrowdStrike technologies;
Performing other duties within the scope of governance, risk, and compliance as needed.
What You’ll Need:
5+ years of working experience on different compliance frameworks, including FedRAMP, NIST, DoD Cloud Computing Security Requirements Guide (SRG), CMMC, and other emerging standards.
prior strategic-level experience with FedRAMP or DoD authorization processes, systems, and methodologies;
Experience in program or project management, auditing, and/or control framework development and implementation.
fundamental technical understanding of key technologies such as Windows, Linux, and Apple operating systems, networks, application development, databases, virtualization, and cloud infrastructure; and
a BA or BS / MA or MS degree in Computer Science/Engineering, Math, Information Security, Information Systems, Information Assurance, Information Security Management, Intelligence Studies, Data Science, or Cybersecurity.
Bonus Points:
Understanding/experience with other international frameworks such as IRAP, Spain LINCE, ISMAP, GDPR, etc.
Prior writing of system security plans (SSPs) or authorization documentation for federal platforms.
Any work with OSCAL and its ecosystem of languages.
Practical experience in programming languages including typical HTML, CSS, JavaScript, Python, etc. and Data Analytics.
Project management experience in scoping, work break-down, critical path analysis, resourcing, managing time estimates, project risks, and quality.
Ability to think strategically about risks and tie those risks to tactical organizational activities.
Experience with a cloud environment and the CrowdStrike products or services.
Open to learning and working on new domains and technology.
#LI-RC1
#LI-Remote
This role will require the candidate to periodically undergo and pass additional background and fingerprint check(s) consistent with government customer requirements.Benefits of Working at CrowdStrike:
Remote-first culture
Market leader in compensation and equity awards
Competitive vacation and flexible working arrangements
Comprehensive and inclusive health benefits
Physical and mental wellness programs
Paid parental leave, including adoption
A variety of professional development and mentorship opportunities
Offices with stocked kitchens when you need to fuel innovation and collaboration
CrowdStrike is proud to be an equal opportunity and affirmative action employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation - generating the best possible outcomes for our customers and the communities they serve.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.
Find out more about your rights as an applicant.
CrowdStrike participates in the E-Verify program.
Notice of E-Verify Participation
CrowdStrike, Inc. is committed to fair and equitable compensation practices. The base salary range for this position in the U.S. is $95,000 - $155,000 per year + variable/incentive compensation + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.Expected Close Date of Job Posting is:12-07-2024 ApplyJob Profile
Remote Remote-first culture
Benefits/PerksAutonomy Autonomy and flexibility Competitive vacation Competitive vacation and flexible working arrangements Comprehensive and inclusive health benefits Equal Opportunity and Affirmative Action Equity Equity awards Flexibility Flexible working arrangements Health benefits Inclusive culture Inclusive health benefits Inclusive, remote-first culture Market leader in compensation Mental wellness programs Mentorship Mentorship opportunities Offices with stocked kitchens Paid parental leave Paid parental leave, including adoption Physical and mental wellness Physical and mental wellness programs Professional development Professional development and mentorship opportunities Remote-first company Remote-first culture Remote work Stocked kitchens Wellness programs
Tasks- Assist with audits
- Collaboration
- Conduct third party evaluations
- Documentation
- Improve processes
- Perform compliance advisory functions
- Project management
- Reporting
- Respond to customer questions
- Track remediation activities
Analytics Apple Application Development Assessments Audit Auditing Cloud Cloud Computing Cloud computing security Cloud Infrastructure Cloud-native platform CMMC Collaboration COM Compliance Compliance frameworks Control framework development CSS Cybersecurity Databases Data Science Documentation DOD Engineering Enterprise FedRAMP Framework Development GDPR Governance GRC GRC program HTML Information Assurance Information security Information systems Innovation IT Javascript Linux Mentorship Monitoring Networks NIST Operating Systems Organization Organizational Program Management Programming Programming languages Project Management Python Recruiting Reporting Security Security management Support Systems Technology Virtualization Windows Writing
Experience5 years
EducationAS B.A. BE B.S. Computer Science Cybersecurity Data Science Degree Engineering Information assurance Information Security Information security management Information Systems Intelligence Studies IT MA Math MS MS degree Project Management Technology
Certifications TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9