CLOUD SECURTIY TEAM OVERVIEW
Automation Anywhere Cloud Security Team is responsible for ensuring Automation Anywhere cloud products deployed with highest level of security and compliance to meet worldwide customer demand across commercial and federal sectors. Cloud Security team works across all cloud initiatives, builds and deploys common cyber risk, and compliance processes, controls, conducts audits, and ensures that technologies and business operations structured and configured for data protection and compliance.
Locations: Bengaluru India
Execute various compliance and risk assessments, audits and test reports for Cloud & SaaS systems
Evaluate, implement and remediate controls on Software as Service (SaaS) and public cloud services
Support audits for the company's certification programs, and act as a compliance subject matter expert to the business and technology teams
Collaborate and coordinate with DevOps, Engineering and Product Management
Coordinate with key process owners to ensure timely execution of compliance and governance controls
Support continuous governance initiatives to improve the efficiency of audits
5+ years of experience in your relevant GRC focus area for SaaS and Cloud services
You have experience in security risk management, controls assessment, and secure configuration
You have a general knowledge of public cloud technologies including AWS, Azure, GCP
You have experience working in an Agile environment using software engineering tools
You have worked with both business and technical risk and understand how to translate between the two and communicate to various levels of technical and business management.
You have storing knowledge of various relevant security frameworks such as FedRAMP, ISO 27001, SOC1/2, NIST, HITRUST, etc.
Relevant BA/BS degree and/or certifications (CRISC, CISSP, CCIE, CISM, CISA, CCSK)
You have one or more AWS, Azure or GCP professional certifications
You have built productive relationships with DevOps, SRE, Security Operations, engineering, product, and other stakeholders.
You have worked for a cloud/SaaS company
Strong knowledge of security risk management frameworks including related regulatory compliance requirements (NIST CSF & 800-53, ISO27001, SOC, HITRUST, HIPAA, FedRamp, SOX, GDPR, etc.)
Experience with GRC tools
10% of travel could be needed depending on the role.