Senior Governance, Risk & Compliance Specialist

Zscaler, a leading cloud security company headquartered in San Jose, California, is seeking a Senior Governance, Risk & Compliance (GRC) Specialist to join their Technology Risk & Compliance team. This role is primarily remote within the United States, with a preference for candidates near San Jose, CA. The Specialist will report directly to the Director of Technology Risk and Compliance. Zscaler is renowned for its innovative cloud-native Zero Trust Exchange platform, which safeguards users, devices, and applications from cyber threats.

In this position, the Specialist will be responsible for implementing, maintaining, and enhancing integrated GRC frameworks for FedRAMP and Department of Defense (DoD) authorizations, emphasizing continuous monitoring activities. They will play a pivotal role in executing significant changes and annual assessments, collaborating with both internal and external stakeholders to communicate GRC requirements effectively. Additionally, the Specialist will manage the Plan of Action and Milestone deliverable, keeping stakeholders informed about system risks, and monitor relevant laws, regulations, and industry standards to ensure compliance.

Candidates should have over five years of experience supporting FedRAMP and DoD compliance programs, with a preference for U.S. citizenship and an active U.S. Secret or Top Secret security clearance. Proficiency in automating continuous monitoring activities, assessing various cloud offerings (SaaS, PaaS, IaaS), and understanding shared control responsibilities is essential. Experience with containerized applications in Kubernetes and security best practices for AI/ML technologies is also advantageous.

Zscaler offers a comprehensive benefits package, including flexible time off, family leave, and an Employee Assistance Program. The company supports a hybrid work environment, balancing individual employee work styles with best practices to build trust and collaboration. Employees are encouraged to take the time off they need to rest, recharge, and prioritize wellness, contributing to a high-performing culture.

Zscaler fosters a culture grounded in shared values and a mission to anticipate, secure, and simplify the experience of doing business. The company is driven to transform the cybersecurity landscape and believes it is uniquely positioned to succeed with a passionate team focused on achieving ambitious objectives. Employees are encouraged to test new ideas, push boundaries, and solve big challenges in a collaborative and innovative environment.