#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We're looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters - one team, one fight.

• Apply your knowledge of information security in contributing to the organization's direction and mission.
• Develop and recommend policy, standard, and control changes to support mission needs.
• Engage in internal and external compliance programs by independent third party auditors.
• Evaluate the effectiveness and adoption of security content across the enterprise.
• Be directly responsible for achieving control objectives defined in the GRC program.
• Proactively identifying areas of improvement within the company.
• Lead efforts to address and remediate security risks.
• Perform other duties within the scope of governance, risk, and compliance as needed.

• Hands-on experience in writing, developing, and maintaining information security policies and standards that align with ISO 27001:2022 and NIST 800-53 Rev. 5 (High impact).
• Excellent writing skills; able to write short and concise while following established writing guides (e.g., APA, Federal Plain Language Guidelines).
• Practical experience leading internal compliance programs, a level of comfort with communications to executives and high-level management.
• Ability to take direction well and work independently while supporting team objectives.
• Ability to build rapport and maintain relationships across a multitude of functions within the company.
• Fundamental technical understanding of key technologies such as operating systems, networks, application development, databases, virtualization, and cloud infrastructures; or at least 5 years job-related experience, or a BA or BS / MA or MS degree in Computer Science/Engineering, Math, Information Security, Information Systems, Information Assurance, Intelligence Studies, Data Science, Cybersecurity, or other related field with at least 3 years experience.
• Strong written and verbal communication skills with native or near-native English language fluency.

• Experience with additional policy and regulatory frameworks such as COBIT, SOC1/SOC2, CSA-CCM, ISO 27002/27031, PCI-DSS, and the NIST Risk Management Framework.
• Knowledge of associated standards and frameworks such as SP 800-34, FedRAMP, CMMC, IRAP, and ISMAP.
• Experience building a GRC program, with little assistance.

• Remote-first culture
• Market leader in compensation and equity awards
• Competitive vacation and flexible working arrangements
• Comprehensive and inclusive health benefits
• Physical and mental wellness programs
• Paid parental leave, including adoption
• A variety of professional development and mentorship opportunities
• Offices with stocked kitchens when you need to fuel innovation and collaboration