S
Posted 9 hours ago
Security and Compliance Manager
SierraSecurity and Compliance Manager
Perks & benefits
Paid LeaveMedical InsuranceFamily Medical InsuranceHealth Insurance
Requirements
8+ years security compliance/GRC experience, Expertise in ISO 42001, PCI DSS, NIST 800-53, FedRAMP, Multi-cloud experience (AWS, Azure, GCP), Knowledge of Kubernetes and container security, CISSP, CISA, or equivalent certification
Skills
GRCAWSKubernetes
About the role
About the Company
Sierra is creating a platform to help businesses build better, more human customer experiences with AI. Guided by values of Trust, Customer Obsession, Craftsmanship, Intensity, and Family, the company is led by co-founders Bret Taylor and Clay Bavor.
Responsibilities
- Own independent audits and regulatory programs including ISO 42001, PCI DSS, NIST 800-53, FedRAMP, and HIPAA
- Drive scope definition, readiness assessments, auditor engagement, and remediation planning
- Partner with Platform and Agent Engineering to design and operationalize controls across multi-cloud environments
- Build and maintain a centralized security controls library mapped to compliance and regulatory requirements
- Define and enforce security baselines for cloud infrastructure, Kubernetes, identity, and network security
- Design and operate automated compliance workflows using AI and infrastructure as code
Requirements
- 8+ years of experience in security compliance, GRC, or security adjacent roles in fast-growing tech companies
- Deep expertise in ISO 42001, PCI DSS, NIST 800-53, and FedRAMP
- Systems-oriented and engineering-focused mindset with ability to reason about cloud architecture
- Hands-on experience with multi-cloud infrastructure (AWS, Azure, GCP)
- Experience implementing security controls across container security, Kubernetes, and encryption systems
- Relevant certifications such as CISSP, CISA, PCI ISA, or ISO 27001 Lead Auditor
Preferred Qualifications
- Experience supporting AI platforms, fintech, or healthcare environments
- Familiarity with global regulatory environments like GDPR, DORA, and the EU AI Act
- Experience supporting public sector or FedRAMP aligned environments
ScoutJobs Agent
Get matches like this delivered daily
Sign up free — we'll pull jobs that fit your CV from across the web and rank them for you.
Get started — it's freeSecurity and Compliance Manager
Sierra · San Francisco
