Enterprise Security Trust Program Manager

This is a fully remote position, open to applicants in Germany.

📋 Description

• Gain a comprehensive understanding of compliance requirements within regulated industries as they relate to Snowflake.

• Develop and implement programs to oversee Snowflake’s compliance status with these regulations, which includes ensuring preparedness, managing external communication of that status, and leading audits by customers or regulators.

• Become well-versed in Snowflake’s control environment, security features, and best practices for customer implementation.

• Address customer inquiries regarding Snowflake’s security and compliance responsibilities, and enhance our ability to empower customers and field personnel to increasingly self-serve.

• Serve as a trusted advisor and facilitator, responding to inquiries from customers and regulators about Snowflake’s security and compliance responsibilities and documentation.

• Engage in sales discussions to highlight Snowflake's security and compliance capabilities.

⛳️ Requirements

• Extensive knowledge of regulations including the EU Digital Operational Resilience Act (DORA), EU AI Act, NIS2, FCA Guidance on Operational Resilience for Critical Third Parties in the UK financial sector, and other relevant standards and requirements.

• Bachelor’s, Master’s or Diploma in Computer Science, Information Systems Management, Mathematics, Accounting/Auditing, Cybersecurity, or other related fields.

• Over 10 years of technical audit experience in programs such as C5, Cyber Essentials Plus, PCI-DSS, SOC2, ISO certifications, or IT audits based on ISAE 3402.

• In-depth understanding of assessing the design and effectiveness of IT controls, evidence collection, and experience collaborating with auditors/regulators for these types of evaluations.

• Familiarity with major Cloud Service Providers including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), or others.

• Strong interpersonal, verbal, and written communication skills, with the ability to convey compliance-related concepts to a diverse range of technical and non-technical stakeholders.

• Capacity to collaborate across functions and across various time zones (PST, EST, etc.).

• Experience in developing certification roadmaps based on regulatory requirements, compliance documentation, and ensuring timely completion of scheduled assessments.

🏝️ Benefits

• Opportunities for professional development.