Senior Program Manager, Cybersecurity Compliance
USA, GA, Atlanta
Workday
Workday Enterprise Management Cloud gives organizations of all sizes the power to adapt through finance, HR, planning, spend management, and analytics applications. Move beyond ERP and deliver extraordinary results in a changing world. Learn...Your work days are brighter here.
At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That’s why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don’t need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here.
About the Team
Cybersecurity GRC (cGRC) is dedicated to maintaining, enhancing and protecting trust in Workday. Every cGRC workmate contributes by building and managing programs designed to protect the confidentiality, integrity and availability (CIA) of our customers’ most sensitive data and representing those programs externally via external audits and certifications. The cGRC team serves as a trusted advisor across Workday to help maintain and enhance trust for our customers.Within cGRC, the Cybersecurity Compliance team focuses on leading Workday’s various compliance programs, control frameworks, third party audits, and overall certification strategy. The Cybersecurity Compliance team works closely with the other cGRC teams supporting governance and risk, and engagement with business partners.
About the Role
***This is a hybrid position to be based in Atlanta, GA OR Boulder, CO and is not budgeted for relocation***
Manage compliance and audit programs across multiple teams, including operations, security and development
Contribute to Workday’s Common Controls Framework development and implementation
Clearly articulate compliance programs and manage communications with third parties, including customers, partners and vendors, regarding Workday’s operational processes and key controls
Act as primary liaison for compliance engagements with various internal and external parties, and drive projects by coordinating cross-team resources
Ensure operational excellence and evolution of Workday’s compliance programs to minimize business impact and deliver benefit
Review and enhance compliance strategy, including controls and procedures, with regards to industry trends and upcoming regulatory activity
About You
Basic Qualifications
6+ years of demonstrated experience in an equivalent technology compliance related role
6+ years of demonstrated experience facilitating and leading security and compliance audits; industry-specific regulatory compliance knowledge, a plus
6+ years of demonstrated program/project management experience; ability to juggle multiple projects and organize time effectively
Other Qualifications
Familiarity with Cloud Computing and Software as a Service, particularly risk models and controls related to these services; familiarity with industry compliance standards such as SOC1 (SSAE18), SOC2, ISO27001
Experience with designing and implementing a Common Controls Framework
Strong executive presence with the capability to speak articulately to technical and operational processes
Successful record of implementing and improving operational processes; can drive program efficiency and high customer satisfaction
Keen attention to detail and accuracy
Strong communication skills, both written and oral
Proven ability to think critically while maintaining operational efficiency
Organized, responsive, and able to gain support and consensus with cross-functional stakeholders
CISA, PMP or other relevant certifications a strong plus
University level degree
Workday Pay Transparency Statement
The annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. As a part of the total compensation package, this role may be eligible for the Workday Bonus Plan or a role-specific commission/bonus, as well as annual refresh stock grants. Recruiters can share more detail during the hiring process. Each candidate’s compensation offer will be based on multiple factors including, but not limited to, geography, experience, skills, job duties, and business need, among other things. For more information regarding Workday’s comprehensive benefits, please click here.
Primary Location: USA.GA.Atlanta
Our Approach to Flexible Work
With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter.
Pursuant to applicable Fair Chance law, Workday will consider for employment qualified applicants with arrest and conviction records.
Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.
Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process!
Tags: Audits CIA CISA Cloud Compliance Governance ISO 27001 SOC 1 SOC 2 Strategy
Perks/benefits: Career development Flex hours Flex vacation Home office stipend Relocation support Salary bonus
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs