The Security Risk Management Specialist will manage and identify security risks, maintain risk registers, and provide updates to leadership, ensuring compliance with frameworks.
Available Locations: Bengaluru
About The Role
We are looking to hire a Security Risk Management Specialist on our Governance, Risk, and Compliance team. This role will be responsible for identifying and managing security risk across Cloudflare's production environment and critical business functions.
At Cloudflare, risk management lays the foundation for protecting Cloudflare and our customers. The Risk team identifies risk throughout the company and prioritizes mitigation efforts to drive Security team roadmaps. We do not believe in tick-box security, so for us risk management is a pathway to doing things right.
This is an opportunity to join a rapidly scaling and world class security organization within a billion dollar business. We guarantee that you won't get bored!
What you'll do
Examples of desirable skills, knowledge and experience.
About The Role
We are looking to hire a Security Risk Management Specialist on our Governance, Risk, and Compliance team. This role will be responsible for identifying and managing security risk across Cloudflare's production environment and critical business functions.
At Cloudflare, risk management lays the foundation for protecting Cloudflare and our customers. The Risk team identifies risk throughout the company and prioritizes mitigation efforts to drive Security team roadmaps. We do not believe in tick-box security, so for us risk management is a pathway to doing things right.
This is an opportunity to join a rapidly scaling and world class security organization within a billion dollar business. We guarantee that you won't get bored!
What you'll do
- Support the governance process for the security risk register. This includes:
- Reviewing, triaging, and rating new risks and policy exceptions
- Keeping the risk register and dependencies up to date (e.g. Control Framework)
- Working with risk owners to document risk treatment plans
- Reviewing evidence submitted by the business to mitigate or close risks
- Re-reviewing accepted risks and exceptions periodically
- Drafting status updates and updating risk metrics for leadership
- Maintaining process documentation and risk register tooling
- Some travel may be required to engage teammates and stakeholders in San Francisco, Austin, London, Lisbon, or other global Cloudflare locations.
Examples of desirable skills, knowledge and experience.
- Experience typically gained in 2-5 years working in Security Governance, Risk, and Compliance
- Experience conducting risk and controls assessments
- Experience managing risk findings and recommending mitigating controls
- Experience drafting risk reports and reporting program metrics to management
- Solid understanding of security control frameworks such as SOC 2, ISO 27001, PCI DSS, and NIST SP 800-53
- Understanding of risk rating methodologies such as NIST SP 800-30 and ISO 31000
- Understanding of on-prem & cloud architectures and security controls
- Experience with data analytics and dashboarding tools such as Tableau, Looker Studio or Power BI is a plus
- Strong analytical and interpersonal skills
- Self-starter with the ability to work independently with a sense of curiosity
Top Skills
Iso 27001
Iso 31000
Looker Studio
Nist Sp 800-30
Nist Sp 800-53
Pci Dss
Power BI
Soc 2
Tableau
Similar Jobs at Cloudflare
Cloud • Information Technology • Security • Software • Cybersecurity
The Senior Security Risk Management Specialist manages security risks, supports governance processes, aligns risk remediation plans, and mentors team members.
Top Skills:
CloudflareIso 27001Iso 31000Looker StudioNist Sp 800-30Nist Sp 800-53Pci DssPower BISoc 2Tableau
Cloud • Information Technology • Security • Software • Cybersecurity
The Technical Support Engineer provides advanced technical support for enterprise customers, troubleshooting network performance, security issues, and guiding product configurations.
Top Skills:
ApacheAWSAzureBashCloudflareDnsFirewallsGCPIisJavaScriptMs SqlMySQLNginxPostgresPythonVpns
Cloud • Information Technology • Security • Software • Cybersecurity
Assist Cloudflare customers with financial, billing, and invoicing questions, ensuring accurate solutions and maintaining communication across teams.
Top Skills:
Billing ToolsSQLStripe
What you need to know about the Kolkata Tech Scene
When considering the industries shaping India's tech scene, gaming might not immediately come to mind. However, in the last decade, increased internet usage and greater access to mobile devices have catapulted the industry to new heights, with Kolkata-based companies like Virtualinfocom, Red Apple Technologies and Digitoonz, at the forefront, driving the design and animation of new gaming titles for players.
