Security and Compliance Lead

Minimum qualifications:

• Bachelor's degree or equivalent practical experience.
  
• 10 years of experience in a technical project management or a customer-facing role.
  
• Experience with Audit Compliance, Risk Assessments, Risk Management Compliance, Cloud, People Management, Compliance Policies.
• Ability to communicate in Arabic and English fluently for this client-facing role.

Preferred qualifications:

• Master's degree in Cybersecurity, Computer Science, Risk Management, Auditing, or a related field.
• Relevant professional certifications including CISSP, CISA, CIPP, GIAC or related information security certifications.
• 10 years of experience managing projects and working in information security and compliance, IT audit, consulting, and risk management.
• 5 years of experience in a technical leadership role with/without direct reports.

Experience with ISO 27k family, SOC reports, PCI DSS, FedRAMP, or equivalent information security and privacy compliance certifications.

About the job

Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.

Responsibilities

• Lead Cloud security risk, operational resilience and regulatory compliance audit engagements requested by Google Cloud's largest customers, their internal IT audit teams, assigned third-party auditors or their regulators.
• Collaborate across Google engineering, data center operations to prepare and execute audit engagements, and educate customers on Google Cloud's ongoing compliance postures to meet business and regulatory requirements.
• Lead the regulatory intake process and perform regulatory compliance analysis and control mapping for the sub-regions under ownership, when there are new regulations or changes to existing regulations.
• Help shape Google Cloud security and compliance, and help support the wider community of Google Cloud security and compliance professionals.
• Review and approve "in-scope" contractual commitments and geo-expansion proposals that materially impact Google Cloud and TI's control environment, internal policies and procedures, and operational capabilities.