hero

Explore Career Opportunities with GSV’s world-class partners

Powered By

Nu Advisory Partners
27
companies
4,520
Jobs

SOC Lead, Third-party Assurance Management and Operations

Google

Google

Operations
Austin, TX, USA
Posted on Thursday, September 5, 2024

SOC Lead, Third-party Assurance Management and Operations

  • Copy link
  • Email a friend
GoogleAustin, TX, USA
  • Copy link
  • Email a friend

Minimum qualifications:

  • Bachelor's degree or equivalent practical experience.
  • 7 years of experience in compliance, risk management, investigation, auditing, legal or consulting.

Preferred qualifications:

  • Experience in implementing SOC programs, including the development of risk assessments.
  • Experience with testing Information technology general controls (ITGC) Sarbanes Oxley Law (SOX), and security and privacy controls.
  • Knowledge of risk assessment methodologies and audit frameworks.
  • Excellent attention to detail, investigative, and problem-solving skills.

About the job

Risk, Compliance and Integrity organization (RCI) brings together critical compliance, assurance, risk and governance functions across Google to help the company meet compliance needs and enable our businesses to innovate. Our goal is to make compliance a competitive advantage for Google by driving scaled, data-driven, and policy-based compliance programs. We manage our operations through risk-based prioritization and governance and consistent and constructive regulator engagement.

In this role, you will make sure that when Google pursues a product or technology, we do it in compliance with the relevant SOC frameworks. In this role, you will lead our efforts in achieving and maintaining compliance with the SOC 1/2/3 framework, managing the entire SOC compliance program, from planning and readiness to ongoing maintenance and improvement as the business and customers needs evolve. You will develop and implement a framework that ensures consistent, efficient, and effective compliance practices. You will also plan for audit requirements, manage schedules, ensure timely completion of audits, and communicate with project stakeholders. You will collaborate with product teams and our compliance ecosystem, ensuring we are audit-ready and meet the objective to leverage assurance as a business enabler and provide competitive advantage.

The US base salary range for this full-time position is $126,000-$187,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about benefits at Google.

Responsibilities

  • Develop and implement a comprehensive SOC 1, SOC 2, and SOC 3 compliance program, including guidelines and a robust risk assessment framework to identify, assess, and mitigate potential risks. Create a road-map for achieving and maintaining compliance with evolving SOC standards.
  • Streamline and standardize SOC compliance processes across the organization, leveraging technology and automation.
  • Provide training and awareness programs to educate Googlers on SOC compliance requirements and their roles in maintaining compliance. Assess and advise stakeholders on compliance risks, controls, and issues identified during audits.
  • Participate in the planning, readiness and audit execution phases, including scoping, risk assessment, preparation of documentation, the control re-validation and support of audit programs performed by external auditors.
  • Manage, coordinate, and facilitate processes to address auditor’s inquiries, activities and requests effectively and timely.

Information collected and processed as part of your Google Careers profile, and any job applications you choose to submit is subject to Google's Applicant and Candidate Privacy Policy.

Google is proud to be an equal opportunity and affirmative action employer. We are committed to building a workforce that is representative of the users we serve, creating a culture of belonging, and providing an equal employment opportunity regardless of race, creed, color, religion, gender, sexual orientation, gender identity/expression, national origin, disability, age, genetic information, veteran status, marital status, pregnancy or related condition (including breastfeeding), expecting or parents-to-be, criminal histories consistent with legal requirements, or any other basis protected by law. See also Google's EEO Policy, Know your rights: workplace discrimination is illegal, Belonging at Google, and How we hire.

If you have a need that requires accommodation, please let us know by completing our Accommodations for Applicants form.

Google is a global company and, in order to facilitate efficient collaboration and communication globally, English proficiency is a requirement for all roles unless stated otherwise in the job posting.

To all recruitment agencies: Google does not accept agency resumes. Please do not forward resumes to our jobs alias, Google employees, or any other organization location. Google is not responsible for any fees related to unsolicited resumes.