Sr. Analyst - Digital Risk & Compliance
Volterra
At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation.
Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.
Position Summary:
We are seeking an experienced risk and compliance professional to join our team within the F5 Digital organization as a Senior Analyst. In this role, you will contribute to establishing and continuously developing the global Digital risk management and compliance framework, deployment roadmap, risk monitoring and reporting, and compliance assurance for the Digital organization. As a Senior Analyst, you will support effective decision-making by helping to define, maintain, communicate, and promote Digital risk and compliance frameworks and control processes across different levels within Digital. You will partner with audit and risk teams across the enterprise to ensure alignment and consistency in risk management practices.
We are looking for a detail-oriented and analytical individual who possesses creativity and problem-solving skills to assist in designing and improving control processes and solutions that address the unique needs of our organization. You will play a critical role in supporting the future of compliance and risk management by conducting testing, monitoring, and implementing procedures to identify risk exposures and assess the effectiveness and efficiency of internal controls.
Primary Responsibilities:
Support the development and maintenance of a growing risk and compliance framework, collaborating with team members to implement key initiatives.
Translate security and compliance requirements into actionable tasks, prioritize work items, track progress, and assist in resolving blockers across multiple teams.
Collaborate with existing teams to assist in managing and executing recurring risk and compliance programs, including IAM and access control, change management, business continuity and disaster recovery, asset management, incident management, and annual policy reviews.
Assist in developing policies, procedures, and processes to ensure controls comply with regulations and organizational policies, working closely with teams across the Digital organization.
Contribute to risk identification efforts by assisting in the evaluation of critical areas of exposure, ensuring timely reporting and supporting mitigation planning in coordination with senior team members.
Help define Sarbanes-Oxley (SOX) ITGC, ISO 27001, and other applicable compliance objectives, ensuring appropriate methods and measurements are in place.
Review, document, and identify gaps in current control processes, supporting remediation efforts in collaboration with operational partners to drive gaps to closure and improve processes.
Act as a resource for Digital Risk and Compliance, providing support to internal and external audit teams as required.
Contribute to achieving compliance certifications and support broader enterprise certification efforts, coordinating with the appropriate teams.
Draft responses to findings and documentation for SOX and other audit and certification requirements, ensuring quality and accuracy, while providing recommendations on remediation plans.
Help foster a risk and compliance mindset within the Digital organization, supporting initiatives that embed a culture of proactive risk management and compliance across processes.
Knowledge, Skills and Abilities
Proven experience supporting IT risk and compliance initiatives and collaborating with internal audit and external auditors.
Strong ability to collaborate and contribute to team objectives, with a focus on supporting and coordinating efforts across teams.
Solid knowledge of technology and cyber risks, with the ability to work effectively with cross-functional teams in risk management and compliance programs.
Familiarity with common frameworks and standards such as NIST and ISO.
Experience assisting with ISO 27001, NIST, SOX, or equivalent standards consulting, reviews, and assessments.
Foundational knowledge and practical understanding of key legal and regulatory compliance, e.g., SOX, FedRAMP, GDPR, CCPA.
Working knowledge of ServiceNow Integrated Risk Module or comparable tools.
Working knowledge of Oracle EBS, Salesforce Sales Cloud, or comparable applications.
Strong project coordination and organizational skills with exposure to program management principles.
Ability to contribute effectively to decision-making processes and collaborate with senior management to achieve goals.
Capability to explain technical or complex issues in simple, non-technical terms.
Experience working with remote, virtual, and cross-functional teams while influencing outcomes without direct authority.
Good communication skills, including meeting facilitation, negotiation, and resolving conflict.
Strong analytical and problem-solving skills that reflect attention to detail and accuracy.
Flexibility and adaptability in responding to changing requirements while maintaining accountability.
Ability to build and nurture strong relationships with diverse internal and external partners across various levels of the organization.
Qualifications
BS/BA degree in a risk, compliance, audit, computer-related field, or equivalent industry experience.
4+ years of related experience, with 2+ years working in Governance, Risk, and Compliance or internal audit functions at technology-based companies or in technical domains.
Certified as a risk professional (e.g., RIMS-CRMP, CRISC, CCSFP, or PMI-RMP) is preferred, but not mandatory.
Solid foundational knowledge of IT principles and processes.
Additional relevant certifications, such as CISM, CISA, CCSFP, CIA, CISSP, PMP, or equivalent, are a plus.
The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.
The annual base pay for this position is: $140,800.00 - $211,200.00F5 maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, geographic locations, and market conditions, as well as to reflect F5’s differing products, industries, and lines of business. The pay range referenced is as of the time of the job posting and is subject to change.
You may also be offered incentive compensation, bonus, restricted stock units, and benefits. More details about F5’s benefits can be found at the following link: https://www.f5.com/company/careers/benefits. F5 reserves the right to change or terminate any benefit plan without notice.
Please note that F5 only contacts candidates through F5 email address (ending with @f5.com) or auto email notification from Workday (ending with f5.com or @myworkday.com).
Equal Employment Opportunity
It is the policy of F5 to provide equal employment opportunities to all employees and employment applicants without regard to unlawful considerations of race, religion, color, national origin, sex, sexual orientation, gender identity or expression, age, sensory, physical, or mental disability, marital status, veteran or military status, genetic information, or any other classification protected by applicable local, state, or federal laws. This policy applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. F5 offers a variety of reasonable accommodations for candidates. Requesting an accommodation is completely voluntary. F5 will assess the need for accommodations in the application process separately from those that may be needed to perform the job. Request by contacting accommodations@f5.com.