Manager - Cyber Security Governance, Risk and Compliance
Pleasanton, CA

Job Description

About Us:

ServiceMax is a provider of cloud-based field service management solutions for technicians, managers and executives. ServiceMax offers on-demand solutions that automate operational planning such as workforce optimization, advanced scheduling and dispatch, parts logistics, inventory and depot repair, and installed base entitlements. The company has offices in Pleasanton, California; Austin, Texas; Bangalore, India; Tokyo, Japan; Sydney, Australia and London, England.

Business Overview:

At ServiceMax we are the leading provider of mobile, cloud-based service execution solutions. We help companies eliminate unplanned downtime, whether for themselves or their customers, by transitioning from reactive to proactive service delivery. Our software transforms and optimizes the delivery of service for any kind of equipment - be it in the field, the facility, or the factory. Our customers achieve measurable business results, including uptime gains, service revenue growth, productivity optimization, compliance and safety adherence, and more.

Job Overview:

We are seeking a strong candidate who has deep cloud experience to join our Cyber Security organization in building and maturing our Governance, Risk, and Compliance function. The Governance, Risk and Compliance Manager will engage in all phases of risk management, mapping and implementing controls, and coordinating with various external auditors for our cloud application environments. You are experienced in compliance assessment in major public cloud environments such as AWS. You will bring the organization's Cyber Security compliance under explicit management control.

Essential Responsibilities:

In this role you will:

* Perform cloud compliance assessments and data security governance reviews at all levels of the Infrastructure, Platform and Software by utilizing established risk assessment framework and assessment programs.
* Understanding and hands on experience in developing one or more industry compliance frameworks and/or privacy/compliance regulations (ISO27001/2, HIPAA, FedRAMP, SSAE16, SOC 1, SOC 2, GDPR).
* Assist the team in the execution of privacy and compliance programs around ISO27001, SOC 1/2/3, FedRAMP, HIPAA and GDPR.
* Provide practical recommendations to remediate control gaps based on risks
* Prepare present assessment findings to a cross-functional teams such as product, engineering, security, sourcing, legal, and compliance.
* Establish operating rhythm to report out on key metrics including status of assessments and issue management.
* Stay current and utilize industry standards and best practices to drive improvements in overall security posture of the cloud service providers (e.g. Azure, AWS)

Basic Qualifications:

* Bachelor's Degree in Computer Engineering or in a STEM major (Science, Technology, Engineering, or Math)
* A minimum of 4 years of experience in information security management and/or related functions (such as Compliance, IT audit, IT Risk Management,
* Hands-on experience building compliance (i.e. ISO, SOC, FedRAMP, HIPAA etc.) frameworks is preferred.
* Knowledge of JavaScript, Oracle PL/SQL and Web development technologies is preferred, not required.
* Internationally recognized information security/IT Audit certification/qualifications such as CISSP, CISA, GSNA, GSAE, or CCNA is preferred.

Eligibility Requirements:

* Legal authorization to work in the U.S. is required. ServiceMax may agree to sponsor an individual for an employment visa now or in the future if there is a shortage of individuals with particular skills.
* Any offer of employment is conditioned upon the successful completion of a background investigation and drug screen.
* Must be willing to travel 15%
* Must be willing to work out of an office located in Pleasanton, CA

Desired Characteristics:

* A High energy and a result-oriented person.
* Experience communicating with geographically distributed teams.
* Foster a collaborative and cooperative team environment, encouraging input and participation from all members.
* Expert understanding of incident handling processes.
* Security consulting or equivalent experience.
* Experience in cloud/SaaS environments.
* Strong communication and interpersonal skills.
* Experience with the application of risk identification techniques.
* Excellent written and verbal communication skills.
* Ability to influence others effectively across a matrixed organization

How to Apply

To be considered for a future position, please submit your resume/CV via https://www.servicemax.com/about/careers

Equal Employment Opportunity

ServiceMax Corporation is an Equal Opportunity Employer and welcomes diversity.