Security Compliance Program Manager
What if you could support the solutions that will change the way the world communicates?
What if you had the freedom of a startup and the resources of a global enterprise?
You’d break new ground. Raise the bar for performance. And do career-defining work.
That’s exactly the kind of environment we’re building together at RingCentral.
RingCentral's cloud-based communications platform connects more than 2 million users around the world, in ways that bring people, ideas, companies and customers together.
We’re as proud of our working environment as we are of our market success. You’ll find all the training, opportunity and resources you could ever want here - with all the work/life benefits you expect, and none of the micromanagement. RingCentral regularly brings home Best Place To Work awards from locations all over the world, and outstanding company ratings on Glassdoor and Comparably!
RingCentral surrounds you with world-class technology and talent, in a people-first environment built from the ground up to help you do the best work of your career. We’re not just changing the nature of communication and teamwork. We’re winning, together.
Essential Job Functions:
- Lead various compliance audits (such as SOC2, HITRUST, FedRAMP, etc.) from planning phase to completion phase.
- Perform planning, scoping, execution and liaising with auditors and manage compliance & security audits.
- Develop project timeline, roadmap and list of required compliance related tasks for various teams. Be the security SME for driving compliance efforts & initiatives.
- Demonstrate domain expertise in FedRAMP, NIST SP 800-53, NIST 800-171, and supporting Systems Security Assessment and Authorization (SA&A) for Federal Agencies.
- Lead and work with teams (Product, Engineering, Operations, IT, HR, Legal, etc.) to implement security framework (e.g. FedRAMP requirements) and to create required documentation. Report compliance performance metrics and measurements to teams.
- Ensure thorough technical documentation, e.g. System Security Plan (SSP) is maintained, using knowledge of security controls and security audits, for technical architecture, operational process and security processes.
- Represent RingCentral to external organizations such as Auditors, Advisors, Federal Agencies, FedRAMP PMO and 3PAO assessors.
- Leverage technical and program management skills to plan, track, collaborate and report on program deliverables, including scheduling and leading meetings, assigning and tracking action items, and developing status reports and measurements.
- Create and maintain documents needed for continuous monitoring of the FedRAMP program (such as Deviation Forms and POAMs).
- Collaborate with Product team and Sales team to define compliance roadmap strategy and under customer needs.
- Assist with other trust, compliance and security engineering projects as needed.
Other Competencies:
- Project Management – Manage project timeline, expectations and milestones. Effectively communicate with other teams and stakeholders during the entire project cycle.
Qualifications:
- Bachelor’s degree in computer science, Information Security, Software Engineering or related field is required.
- Experience leading FedRAMP initiative or must have been an active member of a FedRAMP initiative in past work experience.
- SaaS or Cloud security experience required.
- CISSP certification or related cybersecurity certification required.
- Strong knowledge of common security monitoring topics, encryption, vulnerability management, access management, risk management, and related operational topics & processes required.
About RingCentral
RingCentral is the worldwide leader in cloud-based communications. Our software communications platform delivers phone, group chat, mobile communications, video calls, videoconference, contact center and AI-driven digital engagement. It’s a powerful, global presence that allows businesses to communicate anywhere, anytime with anyone.
RingCentral is headquartered in Belmont, California and has offices around the world.
RingCentral is an equal opportunity employer that truly values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.