Search for Security and Compliance Program Manager roles in North Carolina, requiring 5+ years of experience, with a focus on cloud environments and security controls, and offering competitive salary packages.

Okay, I've searched for Security and Compliance Program Manager roles in North Carolina that require 5+ years of experience, focus on cloud environments and security controls, and offer competitive salary packages. I have found 75 positions for you to review.

Security and Compliance Program Manager

North Carolina

5 years + Experience

Cloud Security

competitive salary packages

Can you help me to analyze the job description and company culture?

Sure. Here's the analysis:

Job Analysis:

The primary objective of the Security and Compliance Program Manager role at NetApp is to design, implement, and assess security controls pertinent to the cloud business, focusing on compliance with various regulatory frameworks such as ISO/IEC 27001 and NIST. The successful candidate will be at the intersection of technology and compliance, partnering closely with engineering and product teams to ensure robust security practices within a rapidly evolving cloud environment. This role entails navigating the complexities of cloud security while proactively addressing risks and automating compliance strategies to enhance operational efficiency. Candidates will face challenges related to integrating compliance programs within diverse teams and balancing regulatory requirements against agile development processes. Success in this position means fostering a culture of compliance while empowering teams to innovate and mitigate risks effectively.

Company Analysis:

NetApp operates within the fast-paced technology sector, specializing in cloud data services and solutions. As a leader in data infrastructure, NetApp is positioned as an innovative disruptor, prioritizing both customer-centric solutions and technically advanced approaches to data management. The company's culture values collaboration, diversity, and openness, fostering an environment where fresh ideas are encouraged and rewarded. This dynamic culture is essential for a role that requires cross-functional collaboration to address complex security challenges. The Security and Compliance Program Manager is not only a critical individual contributor but also influences strategic decisions that shape the security and compliance landscape at NetApp. Given the company's commitment to a hybrid work environment, this role will likely involve both in-office and remote collaboration, underscoring the importance of adaptability and clear communication in a multifaceted organizational context. The position directly contributes to NetApp's mission of transforming challenges into opportunities for clients, emphasizing the need for integrated security measures that align with the company's growth-oriented goals.

Mock up some interview questions based on the job description.

Absolutely. Here are some mock interview questions that could come up:

Can you describe a time when you had to navigate competing priorities in a cross-functional project? How did you ensure that security and compliance were adequately addressed?
Tell me about your experience implementing compliance programs in a cloud environment. What challenges did you face, and how did you overcome them?
Describe a situation where you had to influence team members or stakeholders who were resistant to adopting security measures. What approach did you take?
What strategies do you employ to stay updated on the latest security compliance standards, and how do you ensure your team is also informed?
How would you assess the effectiveness of a new compliance program you are implementing? What metrics would you consider?
Can you explain your understanding of the specific compliance frameworks mentioned in the job description, such as ISO/IEC 27001 or SOC2? How have you applied these in your previous roles?
Imagine your team has identified a significant gap in compliance with a critical security control. What steps would you take to address the issue and communicate the findings to leadership?
If tasked with automating compliance tools for a cloud infrastructure, what key considerations would you prioritize in your implementation plan?
Why are you particularly interested in the Security and Compliance Program Manager role at NetApp?
How do you think your values align with the culture of collaboration and innovation at NetApp?
What do you believe makes a strong compliance culture in an organization, and how would you promote this within your team?
What questions do you have about the team dynamics you would be working with in this role?
How has the hybrid working model impacted your approach to collaboration and project management in your current or past positions?
What are the top three objectives you would set for yourself in the first 6 months if you were offered this position?

Job Details

Overview Company

Security & Compliance Program Manager

$130.05k/y-$193.6k/y

NetApp Instaclustr

a month ago

Highlight

OnsiteFull-time5+ yearsSenior

Summary

NetApp is seeking a Security and Compliance Program Manager to join their team in North Carolina, United States. The role involves designing, implementing, and assessing security controls within NetApp's Cloud business.

About the Role

As a GRC TPM in the Cloud business, you will join a growing Security & Compliance team within NetApp’s fastest-growing business. The role is to design, implement, and assess security controls from a technical lens. You will drive compliance with a technical lens, design, implement, maintain, and improve compliance programs, and partner with various teams to collaborate on pragmatic solutions to security risks and compliance issues. You will also assist with improving internal policies, processes, and overall security governance, drive automation, and assist with the adoption of GRC tooling within the business.

About You

Required:

5+ years of experience in building and maintaining security risk & compliance programs.
Experience in implementing technical security controls and assessing compliance standards (ISO/IEC 27001, SOC2, PCI, NIST, FedRamp, etc.) over infrastructure, applications, and Development and Cloud Engineering processes.
Ability to assess security risks in a cloud environment.
Strong understanding of technical concepts relevant to cloud computing environments.
Excellent writing and communication skills with attention to detail.
Strong project management and organizational skills.

Preferred:

Similar experience within a SaaS product company or Big4 auditing/consulting experience with a strong focus on Security advisory.
Experience with FedRamp.

Benefits

Comprehensive benefits package including medical, dental, wellness, and vision plans.
Educational assistance, legal services, and access to discounts.
Financial savings programs to help plan for the future.
Volunteer time off program offering 40 hours of paid time per year.

NetApp Instaclustr

Instaclustr helps companies unlock the true power of open source technologies through its managed platform for deploying, managing, and monitoring all components of their data infrastructure.

Instaclustr combines a complete data infrastructure environment with hands-on technology expertise to ensure ongoing performance and optimization. By removing the infrastructure complexity, we enable companies to focus internal development and operational resources on building cutting edge customer-facing applications at lower cost. Instaclustr customers include some of the largest and most innovative Fortune 500 companies.