Location: Austin TX

About the Role

Cloudflare is looking for a Data Center Security Compliance Public Sector Specialist to assist our global Data Center Security Compliance team. This critical role is part of the Infrastructure Operations organization that is responsible for building scaling and running Cloudflares data center and network infrastructure around the world. You will play a key role in ensuring the performance availability and security of Cloudflares pursuit of the goal to help build a better Internet Cloudflare operates one of the worlds largest and most important cloud networks. Spanning more than 300 cities across the globe Cloudflares network is a key strategic asset and supports all customers and products.

The DCSC Public Sector Specialist sits at the intersection of physical infrastructure strict government regulation (FedRAMP) and operational security. We are looking for a driven detailed and organized professional that can help us improve operational excellence working with our large strategic this role you will have the opportunity to blend strategic vision with tactical implementation to drive outcomes. The ideal candidate will have experience working with the Data Center Security Compliance Programs with a focus on improving operational excellence to drive growth and scalability. This is your opportunity to join a growing fast-paced and market-leading cloud security company that is poised to be one of the iconic brands of the decade. If you are interested in building your career with a company that is experiencing explosive growth while being given the responsibility and challenge to have a real impact on our companys success then this is the opportunity for you.

Key Responsibilities

1. Public Sector & Compliance Governance

• Serve as the Subject Matter Expert (SME) on NIST 800-53 control families and FedRAMP requirements.
  
  
• Manage Cloudflares continuous monitoring program inclusive of annual assessments and significant change requests.
  
  
• Collect validate and organize FedRAMP evidence and artifacts to present to auditors FedRAMP customers and the FedRAMP PMO.
  
  
• Help guide our overall security policy and governance architecture to ensure alignment with evolving government regulations.
  
  

1. Audit Lifecycle Management

• Orchestrate end-to-end audit activities for standards such as PCI SOC2 ISO NIST and FedRAMP.
  
  
• Coordinate with auditors to manage data center access compliance certificate collection and evidence defense.
  
  
• Work cross-functionally with Engineering Legal Product and Operational teams to maintain management and technical controls.
  
  
• Support compliance and regulatory projects including implementation of new legislation / regulation.
  
  

1. Identity & Access Management (IAM) Operations

• Execute monthly Periodic Access Reviews (PARs): Compare portal user lists against ACLs to ensure least-privilege access is maintained across all data centers.
  
  
• Manage the lifecycle of portal access: Auditing access provisioning/deprovisioning users and maintaining accurate documentation.
  
  
• Oversee physical access requests to data centers and ensure strict adherence to security policies.
  
  
• Drive the resolution of daily DCSC Jira tickets for portal access physical access audits and site decommissioning.
  
  
• Automate and streamline access review processes where possible utilizing standard communication templates to site managers.
  
  

1. Partner Relations & Reporting

• Own influence and orchestrate relationships within the partner Offering teams that can help drive Cloudflare offerings and strategic positioning.
  
  
• Monitor and implement changes to individual accountability regime requirements (such as UK Ireland Singapore and Australia).
  
  
• Maintain centralized documentation databases dashboards and reporting mechanisms to track compliance health.

Requirements

• 3-6 years working in Security Compliance Information Security or Risk Management.
• Deep familiarity with all NIST 800-53 control families and FedRAMP requirements
• Ability to work closely with auditors and articulate technical concepts
• Experience in auditing of network operating system and application security
• Proven experience managing an audit throughout the full audit lifecycle (from readiness to final report)
• Familiarity with additional security standards and frameworks such as ISO 27000 SOC 2 PCI DSS ISMAP and IRAP.
• Ability to work cross-functionally with internal stakeholders and strong communications skills
• High tolerance for ambiguity and ability to work efficiently and independently in a fast-paced high-volume environment
• Some travel may be required to engage with regulators and auditors
• Certifications: CISSP CIPP CIPM CIPT CISA or CRISC.
• A relevant professional experience working with technology partners alliances or third-party vendors ideally in the following disciplines: Data center Security Compliance Access Management audit administration at a leading high-tech company; offering management
• Technical skills including the ability to understand (1) product roadmaps; (2) market trends and factors; and (3) complex partner requirements.
• Strong technical proficiency with spreadsheet software (Excel/Google Sheets) including pivot tables and VLOOKUPs for data reconciliation.
• Organized & Disciplined with a strong focus on driving outcomes
• Preferred Prior experience with Data Centre Security Compliance disciplines and audit programs and past history working at a hyperscaler or high-growth tech company.
• Preferred Superb organizational skills and demonstrated history managing complex processes including audit cycles Facts gathering and analytical skills.

What Makes Cloudflare Special

Were not just a highly ambitious large-scale technology company. Were a highly ambitious large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet.

Project Galileo: Since 2014 weve equipped more than 2400 journalism and civil society organizations in 111 countries with powerful tools to defend themselves against attacks that would otherwise censor their work technology already used by Cloudflares enterprise customers--at no cost.

Athenian Project: In 2017 we created the Athenian Project to ensure that state and local governments have the highest level of protection and reliability for free so that their constituents have access to election information and voter registration. Since the project weve provided services to more than 425 local government election websites in 33 states.

1.1.1.1: We released 1.1.1.1 to help fix the foundation of the Internet by building a faster more secure and privacy-centric public DNS resolver. This is available publicly for everyone to use - it is the first consumer-focused service Cloudflare has ever released. Heres the deal - we dont store client IP addresses never ever. We will continue to abide by our privacy commitment and ensure that no user data is sold to advertisers or used to target consumers.

Sound like something youd like to be a part of Wed love to hear from you!

This position may require access to information protected under U.S. export control laws including the U.S. Export Administration Regulations. Please note that any offer of employment may be conditioned on your authorization to receive software or technology controlled under these U.S. export laws without sponsorship for an export license.

Cloudflare is proud to be an equal opportunity employer. We are committed to providing equal employment opportunity for all people and place great value in both diversity and inclusiveness. All qualified applicants will be considered for employment without regard to their or any other persons perceived or actual race color religion sex gender gender identity gender expression sexual orientation national origin ancestry citizenship age physical or mental disability medical condition family care status or any other basis protected by law. We are an AA/Veterans/Disabled Employer.

Cloudflare provides reasonable accommodations to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job. Examples of reasonable accommodations include but are not limited to changing the application process providing documents in an alternate format using a sign language interpreter or using specialized equipment. If you require a reasonable accommodation to apply for a job please contact us via e-mail at or via mail at 101 Townsend St. San Francisco CA 94107.