Compliance Analyst

What you can expectWe are seeking a Security Technical Compliance Analyst to join the Security Operations team for Zoom for Government. This role will be instrumental in leveraging large data sets to drive higher levels of security posture and configuration consistency for the Zoom for Government and Zoom for DoD infrastructure.About the TeamThe successful candidate will be part of the Security Operations team for Zoom for Government, working closely with engineering teams, operations teams across the Zoom global organization, and government agencies to enhance collaboration, streamline data pipelines, and improve remediation efforts.Responsibilities:- Validate and drive vulnerability remediation for discovered vulnerabilities.- Build the bridges between security and compliance by working directly with operations teams, infrastructure teams, security teams, related Zoom teams, and Government authorizing officials.- Interact with senior levels of government agencies.- Conduct security assessments, significant change requests, and attestations.- Work as an internal auditor for the organization's infrastructure and services.- Develop technical knowledge of control implementation.- Improve documentation, track progress, coordinate improvement efforts, and monitor process improvement effectiveness.- Communicate requirements effectively to internal and external stakeholders.- Serve as a liaison between agencies/auditors and internal teams regarding compliance issues and solutions.- Support the Security Operations team in resolving audit and vulnerability findings.- Meet regularly with technical teams to follow up on patching cadence.- Implement automated monitoring and alerting on continuous compliance tasks.- Report continuous monitoring documentation to associated organizations (FedRAMP, StateRAMP, DISA) on a monthly basis.- Effectively recognize and mitigate threats by performing relevant research and data analysis.- Report security incidents.- Perform other duties as needed.What we're looking forRequirements:- B.S or M.S in Computer Science, Cybersecurity, Information Security, or related field, or equivalent relevant experience.- Knowledge or experience with vulnerability scanners such as Tenable, Tenable WAS, Prisma, etc.- Experience with security compliance frameworks such as FedRAMP, NIST/DoD RMF, and NIST SP 800-series publications.- Experience working with testing tools such as Nessus, DISA STIGs / STIG Viewer, etc.- Knowledge of desktop, server, mobile operating systems, and cloud computing providers.- Ability to plan, organize, prioritize, work independently, and meet deadlines.- Must be a U.S. citizen or green card holder .Pluses:- Engineering background (such as Electrical Engineering, Software Engineering, Systems Engineering) is highly desirable. Experience in designing or optimizing technical systems is a strong advantage in driving compliance and security integration efforts.- Deep understanding of OWASP Top 10 , specifically A06:2021 Vulnerable and Outdated Components.- CISSP/CISM/CEH certifications.- Experience with container management tools such as Docker, Amazon ECS, Kubernetes, or equivalent implementations.- Knowledge of multiple cloud computing providers such as AWS, OCI, etc.- Experience working in the public sector or with government clients.- Active Security Clearance .- Linux experienceSalary Range or On Target Earnings:Minimum:$76,800.00Maximum:$186,200.00In addition to the base salary and/or OTE listed Zoom has a Total Direct Compensation philosophy that takes into consideration; base salary, bonus and equity value.Note: Starting pay will be based on a number of factors and commensurate with qualifications & experience.We also have a location based compensation structure; there may be a different range for candidates in this and other locationsAt Zoom, we offer a window of at least 5 days for you to apply because we believe in giving you every opportunity. Below is the potential closing date, just in case you want to mark it on your calendar. We look forward to receiving your application!Anticipated Position Close Date:12/27/24Ways of WorkingOur structured hybrid approach is centered around our offices and remote work environments. The work style of each role, Hybrid, Remote, or In-Person is indicated in the job description/posting.BenefitsAs part of our award-winning workplace culture and commitment to delivering happiness, our benefits program offers a variety of perks, benefits, and options to help employees maintain their physical, mental, emotional, and financial health; support work-life balance; and contribute to their community in meaningful ways. Click Learn (https://careers.zoom.us/benefits) for more information.About UsZoomies help people stay connected so they can get more done together. We set out to build the best collaboration platform for the enterprise, and today help people communicate better with products like Zoom Contact Center, Zoom Phone, Zoom Events, Zoom Apps, Zoom Rooms, and Zoom Webinars.We're problem-solvers, working at a fast pace to design solutions with our customers and users in mind. Here, you'll work across teams to deliver impactful projects that are changing the way people communicate and enjoy opportunities to advance your career in a diverse, inclusive environment.Our Commitment?We believe that the unique contributions of all Zoomies is the driver of our success. To make sure that our products and culture continue to incorporate everyone's perspectives and experience we never discriminate on the basis of race, religion, national origin, gender identity or expression, sexual orientation, age, or marital, veteran, or disability status. Zoom is proud to be an equal opportunity workplace and is an affirmative action employer. All your information will be kept confidential according to EEO guidelines.We welcome people of different backgrounds, experiences, abilities and perspectives including qualified applicants with arrest and conviction records and any qualified applicants requiring reasonable accommodations in accordance with the law.If you need assistance navigating the interview process due to a medical disability, please submit an Accommodations Request Form (https://form.asana.com/?k=OIuqpO5Tv9XQTWp1bNYd8w&d=1127274756253361) and someone from our team will reach out soon. This form is solely for applicants who require an accommodation due to a qualifying medical disability. Non-accommodation-related requests, such as application follow-ups or technical issues, will not be addressed.#LI-Remote