×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant Data Security

Cloud Security GRC Specialist

Job in Washington, District of Columbia, 20022, USA
Listing for: Meta
Full Time position
Listed on 2026-01-23
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, Data Security
Salary/Wage Range or Industry Benchmark: 153000 - 209000 USD Yearly USD 153000.00 209000.00 YEAR
Job Description & How to Apply Below

Summary

Meta's Security Governance, Risk and Compliance function (Security GRC) serves as the primary hub for Security risk management and compliance across the company, providing support to Meta and its family of apps. Within Security GRC, the Cloud Security GRC function is a horizontal capability providing guidance and direction to first line teams in making Meta’s Cloud platforms secure, available and compliant.

At Meta, we understand the significance of security, data protection, and privacy for the billions of people who use our services. We are committed to ensuring compliance with applicable laws and regulations such as the General Data Protection Regulation (GDPR), the European Electronic Communications Code (EECC), the Network and Information Security Directive (NIS2), and others, while enabling the business to rapidly and securely use appropriate Cloud solutions.

We are currently seeking highly experienced and motivated information security professionals to join our Cloud Security Function to continue to develop Cloud Security GRC capabilities. This role is critical in driving change and ensuring compliance with these and other obligations. As part of this role, you will collaborate closely with engineers, analysts, technical program managers, business stakeholders, legal teams, and risk & compliance teams across the Meta organization.

You will bring a comprehensive understanding of various aspects of information security and the ability to apply this knowledge to solve problems s role demands a blend of business and technical acumen, proven communication skills, and a keen desire to learn. Our goal is to make Meta the premier place to work for governance, risk, compliance, security, and integrity professionals.

Required

Skills Cloud Security GRC Specialist Responsibilities
  • Lead significant programs of work across various levels of cross-functional (XFN) teams in Cloud Security and Cloud GRC areas
  • Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact
  • Design, implement, and/or assess security controls and frameworks
  • Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks
  • Assess and document emerging regulatory impact on established policy and control frameworks
  • Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals
  • Establish learnings, best practices, standardized frameworks and tools across GRC and related teams
  • Develop detailed program/project plans in partnership with cross-functional teams
  • Identify opportunities for information sharing, process improvement and automation
  • Support business travel on an as needed basis (up to 10%)
    • Minimum Qualifications
  • 7+ years experience in information security and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management)
  • Demonstrable familiarity with key Cloud Security, Risk Management and Compliance concepts
  • 4+ years of experience in hands on security, with at least one of the major CSPs (AWS, GCP, Azure)
  • Experience in a GRC function overseeing Cloud implementations at scale
  • Experience in designing and implementing control frameworks
  • Experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment
  • Familiarity with compliance frameworks and regulatory requirements such as NIST, CSA CCM, ISO-27001, ISO
    27018, SOC2, GDPR, EECC, eDP, NIS2, and other relevant structures
  • Bachelor's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field or equivalent experience
    • Preferred Qualifications
  • Security industry qualification (CISSP, CISM, CISA or similar)
  • Cloud-specific Cloud Certifications (CCSP, AWS Certified Security Specialist, CCSK, etc.)
  • Master's Degree in Computer Science, Information Systems, Engineering, Cybersecurity or related field
    • Public Compensation

    $153,000/year to $209,000/year +…

    To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
    (If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
     
     
     
    Search for further Jobs Here:
    (Try combinations for better Results! Or enter less keywords for broader Results)
    Location
    Increase/decrease your Search Radius (miles)

    Job Posting Language
    Employment Category
    Education (minimum level)
    Filters
    Education Level
    Experience Level (years)
    Posted in last:
    Salary
    Advanced Search