Compliance Information Security Analyst

Compliance Information Security Analyst

The Cloud Assurance, Readiness & Compliance (CloudARC) team within STO is responsible for ensuring Cisco's cloud offering portfolio demonstrates the highest levels of security assurance to our global customers while maintaining cybersecurity compliance and certifications required to access markets around the world. Our team plays a leading role in understanding customer needs for security, privacy, data protection, and customer data management. We inform, support, and collaborate with customers, Sales, Engineering, Supply Chain, Government Affairs and Legal; building industry leading trust and transparency through security and compliance.

The Compliance Information Security Analyst will play a meaningful role in attaining and maintaining compliance certifications for Cisco cloud offerings across the globe, and supporting compliance and regulatory frameworks such as SOC2, ISO27001/17/18, ENS, C5, etc. This role will be responsible for facilitating compliance readiness, control assessments and external audits in collaboration with CloudARC leadership, Product Management, and Engineering. In addition, the candidate will provide compliance readiness support, and support local initiatives related to data privacy, security, and cloud compliance.

The ideal candidate is enthused by the idea of compliance as a business enabler, has hands-on experience with multiple compliance and regulatory frameworks (e.g. SOC2, ISO27001/17/18, CSA STAR. Spain ENS, Germany C5, Japan ISMAP, Australia IRAP etc.) and has solid experience assessing sophisticated product ecosystems against cloud control frameworks. This role is ideal for the strategic problem solver who is passionate about building scalable compliance capabilities, can clearly communicate technical requirements to stakeholders across the business ecosystem, and is driven by the opportunity to be on the forefront of customer trust.

Key Responsibilities

• Support security compliance and regulatory audits in Cisco's cloud compliance portfolio.
• Collaborate with a team of compliance engineers to develop and execute common control strategies, ensuring consistency across audits.
• Partner with Cisco Business Units (BUs) to support the adoption and compliance with Common Cloud Controls.
• Serve as a subject matter expert for relevant security compliance frameworks, providing guidance and expertise to product and engineering teams.
• Conduct information security assessments over a portfolio of products and prepare reports summarizing compliance results and remediation plans.
• Work with CloudARC leaders and Product Management to develop and maintain the Product Compliance roadmaps for Cisco Cloud offerings.
• Support initiatives related to data privacy, security, and cloud compliance requirements.

Required Skills:

• 2+ years of experience in a security or compliance role.
• Bachelor's degree in Information Security, Computer Science, or a related field.
• Hands-on experience working with cloud platforms, particularly AWS or other major cloud environments.
• Deep expertise in regulatory compliance and security frameworks such as ISO 27001/17/18, SOC2, C5, ENS, and similar standards.
• Solid understanding of key IT security processes and services, including Secure SDLC, Identity and Access Management (IAM), Vulnerability Management, and Backup/Disaster Recovery.

Preferred Skills:

• Industry certifications such as CISA, CISSP, CCSK, or equivalent certifications.
• Master's degree in Information Security, Computer Science, or related field.
• Consistent track record in supporting delivery of compliance reports and certifications.
• Experience partnering with auditors to drive attainment and maintenance of compliance certifications.
• Excellent communication skills, with the ability to collaborate effectively across technical and non-technical teams.
• Highly organized and adaptable, with demonstrated success leading multiple priorities in a fast-paced, evolving environment.
• Team-oriented mindset, with a dedication to collaboration, knowledge sharing, and continuous improvement.

Why Join Cisco?

At Cisco, you'll work with a results-driven and strategic team at the forefront of security and compliance. By joining the CloudARC team, you'll contribute to enabling secure cloud solutions for customers worldwide, ensuring Cisco continues to lead as a trusted partner in the digital age. Be part of a mission-driven organization where your expertise will directly impact Cisco's ability to meet the evolving security needs of our customers.

Are you ready to help shape the future of secure cloud technology? Apply today to join Cisco's Security and Trust Organization!