Think Beyond The Label Jobs

Summary:

Overview:We are creating an operationally effective and highly efficient “service of common concern” for Security Governance, Risk, and Compliance (GRC) needs, ensuring Security continues to meet global regulatory requirements and to manage risk.We are seeking experienced security talent to help enable and safeguard Meta’s products and services which have a truly global scale. Security GRC is simultaneously responsible for, (a) enabling the business to achieve its goals at scale and pace; (b) safeguarding the business against real world security risks; and (c) addressing the regulatory scrutiny the business faces. Our goal is to make Meta the premier place to work for governance, risk, compliance and security professionals. The Security Policy Framework team is committed to ensuring that Meta effectively meets global regulatory requirements and manages security risks by maintaining a robust policy framework. This framework addresses risk management expectations and governing security controls, while also satisfying the more stringent compliance obligations.

Required Skills:

Security GRC Policy Management Responsibilities:

1. Design and maintain company-wide policies, standards, and controls to support business and regulatory needs

2. Drive multiple cross-functional programs to bridge gaps and prepare for upcoming regulatory obligations

3. Internally assess, evaluate, and make recommendations to management regarding the adequacy of security and compliance controls

4. Review security architecture and relevant policies for the organization's infrastructure, application, and cyber resilience

5. Provide thought leadership and drive structure for the broader risk and compliance function, as well as for the team

6. Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals

7. Maintain an in-depth understanding of the global security regulatory landscape impacting Meta

8. Remain current with emerging regulatory sentiments and understand the impact of laws and regulations on Meta

9. Supporting security training and awareness programs to employees

Minimum Qualifications:

Minimum Qualifications:

10. 2+ years in information security, cybersecurity, and/or technology risk including one or more domains (e.g., access management, vulnerability management, change management, business continuity, application security, asset management).

11. 1+ years in effectively analyzing data and programs for security risk and/or compliance

Public Compensation:

$90,000/year to $137,000/year + bonus + equity + benefits

Industry: Internet

Equal Opportunity:

Meta is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state and local law. Meta participates in the E-Verify program in certain locations, as required by law. Please note that Meta may leverage artificial intelligence and machine learning technologies in connection with applications for employment.

Meta is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance or accommodations due to a disability, please let us know at accommodations-ext@fb.com.