GRC Program Manager - Federal Compliance Programs at Zscaler

San Jose, California, United States

Apply Now

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Cybersecurity, Cloud Computing, TechnologyIndustries

Requirements

10+ years of experience in managing FedRAMP, DoD IL5 and DoD IL6 compliance programs from start to finish
U.S. citizenship with active U.S. Secret or Top Secret/SCI security clearance
Proven expertise in assessing containerized applications, Kubernetes environments and AI/ML technology
Experience working with FedRAMP 20x compliance and processes
Bachelor's degree in Information Technology (e.g., CIS, CS) or relevant field
Experience and Certifications (e.g., CISSP)
Preferred Qualifications
Exceptional verbal and written communication skills, tailored for both technical and non-technical audiences
Demonstrated strength in prioritizing tasks within a fast-paced, evolving environment

Responsibilities

Designing, implementing, and maintaining integrated GRC frameworks FedRAMP and DoD authorization, including continuous monitoring and managing project timelines and deliverables (e.g., NIST 800-53 Rev 5, FIPS 140-3, DoD CC SRG V1R1, OMB Mandates)
Collaborating and communicating GRC requirements to a wide range of stakeholders, including engineering, security, business teams, external assessors, federal agencies, and leadership
Monitoring relevant laws, regulations, and industry standards, and conducting compliance assessments to ensure continued adherence
Influencing business strategy and decision-making through expert compliance insights and ensuring compliance activities are integrated into broader business processes and initiatives

Skills

GRC

Program Management

Federal Compliance

Risk Management

Compliance Programs

Cloud Security

Zero Trust

Zscaler

Cloud-based cybersecurity and secure gateway services

About Zscaler

Zscaler provides cloud-based information security services, focusing on internet, web, and cloud security. Its platform functions as a secure gateway that inspects all internet traffic between users and applications, ensuring that threats are identified and stopped before they can access a client's network. This service is offered through a subscription model, allowing large enterprises and government organizations to select the level of security that meets their needs. Zscaler differentiates itself from competitors by offering a strong partner program that enhances market reach and provides partners with training and resources. The company's goal is to support secure digital transformation for its clients by delivering reliable security solutions.

San Jose, CaliforniaHeadquarters

2008Year Founded

$148.8MTotal Funding

IPOCompany Stage

Enterprise Software, CybersecurityIndustries

5,001-10,000Employees

Benefits

Comprehensive health plans

Supportive parental & family leave

On-demand learning & development

Company-sponsored volunteering

Global tuition assistance program

Guilt-free paid time off

Risks

Emerging cybersecurity firms may erode Zscaler's market share.

Economic downturns could impact Zscaler's subscription-based revenue model.

The retirement of CFO Mr. Canessa may lead to financial instability.

Differentiation

Zscaler offers a 100% cloud-based security platform, eliminating on-premise hardware needs.

The company is a Gartner magic quadrant leader for secure web gateways.

Zscaler's platform inspects all internet traffic, ensuring threats are neutralized pre-network.

Upsides

Zscaler's FY/25 guidance was revised upward, indicating strong financial performance.

The partnership with Bharti Airtel enhances Zscaler's zero-trust architecture offerings.

Zscaler's hiring of government experts strengthens its position in the public sector.

Land your dream remote job 3x faster with AI

Try Jobo Free