Requirements

• You are enthusiastic about bridging the gap between GRC and Engineering
,
• You have demonstrated knowledge of large data handling and systems integration
,
• You have knowledge of various regulations and controls (SOX, PCI, CCPA, GDPR, etc)
,
• You are excited about developing and growing our GRC Engineering capabilities
,
• You can share impact through visualization and BI tools (Tableau, etc.)
,
• You have a passion for risk management, information security, metrics, efficient security operations, and effective control designs
,
• Visualizing GRC data for people to consume and use effectively is something you are good at doing
,
• Can develop scripts in various scripting languages (Python, Go, etc.) and peer review code / implementation / automation scripts
,
• Familiarity with RESTful API
,
• Have familiarity with AWS infrastructure
,
• Can connect the dots around the business value of control automation, testing, and effectiveness
,
• Operate within an environment of ambiguity and create clarity
,
• Participate in risk management, decision-making, and collaborative discussions
,
• Can communicate with clarity (written and verbal)
,
• Understand relevant data collection, data cleaning, and data analysis techniques
,
• Utilize your experiences to help drive changes within our programs
,
• Develop templates and instructional materials to help your fellow team members
,
• Monitor and identify opportunities to improve the effectiveness and quality of our program
,
• Manage and execute against key deliverables
,
• Attention to detail
,
• Inclusivity
,
• Broad knowledge of how to operationalize the management of risk as a part of regular workflow
,
• Autonomously drives work delivery (bias to action)
,
• Strong communication (technical, status/blockers, cross-functional)
,
• Cross-functional collaboration

What the job involves

• This role will impact key stakeholders such as Legal, HR, Security Engineering, and Finance to name a few
,
• In this role, you will help establish and execute a broad strategic vision for the risk program at Netflix
,
• You will not only work within the team but also cross-functionally with various teams across the organization
,
• Design and implement automation for key regulatory and compliance activities
,
• Challenge and expand our thinking surrounding engineering and GRC
,
• Improve our reporting, metrics and assurance within GRC and with our stakeholders
,
• Promote and demonstrate the relevance and importance of security controls and how they provide business value
,
• Expand the utilization of our GRC Platform within the business
,
• Integrate GRC systems with cross-functional stakeholders to ensure accuracy and consistency
,
• Contribute to improving our continuous improvement activities including integrating best practices for GRC systems

Apply Job!