Who we are
We're Redis. We built the product that runs the fast apps our world runs on. (If you checked the weather, used your credit card, or looked at your flight status online today, you’re welcome.) At Redis, you’ll work with the fastest, simplest technology in the business—whether you’re building it, telling its story, or selling it to our 10,000+ worldwide customers. We’re creating a faster world with simpler experiences. You in?

Why would you love this job?

Are you passionate about tech controls, policy, standards, and effective risk management? We want you on our team! We're seeking enthusiastic candidates with a strong technical background and experience in Governance, Risk, and Compliance or Technical Controls Assurance. If you have a knack for enhancing tech controls, identifying control gaps and risks, and building strong cross-functional partnerships with control owners, we’d love to hear from you!

What you’ll do: 

  Customer Trust and Assurance:

Develop and implement strategies to enhance customer trust by ensuring the highest data protection and privacy standards. Communicate the organization's commitment to cybersecurity and data protection to customers, providing transparency around security practices and measures. Collaborate with customer-facing teams to address customer concerns related to cybersecurity and data protection, ensuring prompt and effective resolution. Monitor and respond to customer feedback regarding cybersecurity, using insights to drive improvements in security practices and customer communication. Conduct comprehensive risk assessments of third-party vendors and service providers to identify potential security risks. 

  Controls Assurance and Compliance:

Design, implement, and maintain a robust cyber controls framework to ensure compliance with industry standards, regulatory requirements, and internal policies.Regularly review and test the effectiveness of controls to ensure they are operating as intended.

  Continuous Controls Monitoring:

Establish and manage a continuous controls monitoring program to provide real-time visibility into the effectiveness of cyber controls. Utilize automated tools and technologies to continuously monitor and assess the performance of security controls, promptly identifying and addressing any deficiencies. Leverage data analytics to gain insights into cyber risk trends, control effectiveness, and incident patterns.

  Stakeholder Communication and Reporting:

Collaborate with teams across the organization to identify security and privacy risk mitigation needs. Partner with Legal, IT, and Engineering teams to implement technical controls. Provide regular updates and reports to senior management, the board of directors, and other key stakeholders on the status of cyber risks, control effectiveness, and incident response activities. Communicate complex technical information in a clear and concise manner to non-technical audiences.

What will you need to have? 

Relevant certifications such as CISSP, CISM, CRISC, or similar (not required, but nice to have). Proven experience in cyber risk management, control assurance, and incident response. Strong understanding of regulatory requirements and industry standards (e.g., NIST, ISO 27001, GDPR). Excellent leadership and communication skills, and comfortable communicating in high-risk situations. Expertise with designing and implementing continuous control monitoring activities, through Go/Python/NodeJS/unix shell (bash, zsh) practical scripting, and/or data analysis tools Knowledge of API and data querying

We give back to our employees:

Our culture is what makes Redis a fun and rewarding place to work. To support you at work and beyond, we offer all our US team members fantastic benefits and perks:

Competitive salaries and equity grants Unlimited time off to promote a healthy work-life balance H/D/V coverage along with 401K, FSA, and commuter benefits Frequent team celebrations and recreation events Home internet & phone stipend Learning and development opportunities Ability to influence a high-performance company on its way to IPO 

The estimated gross base annual salary range for this role is $110,000 – $149,500 per year in New York, California, Washington, Colorado, and Rhode Island. Actual compensation may vary and is dependent on various factors, including a candidate’s work location, qualifications, experience, and competencies. Base annual salary is one component of Redis’ total compensation and competitive benefits package, which may include 401(k), unlimited time off, learning and development opportunities, and comprehensive health and wellness benefits. This role may include discretionary bonuses, stock options, commuter benefits based on location, or a commission plan. Salary history is not used in compensation package decisions. Redis utilizes market pay data to determine compensation, so posted compensation ranges are subject to change as new market data becomes available.

#LI-AB1 

 

As a global company, we value a culture of curiosity, diversity of thought, and innovation from our employees, customers, and partners. Redis is committed to a diverse and inclusive work environment where all employees’ differences are celebrated and supported, and everyone feels safe to bring their authentic selves to work. Redis is dedicated to equal employment opportunities regardless of race, color, ancestry, religion, sex, national orientation, sexual orientation, age, marital status, disability, gender identity, gender expression, Veteran status, or any other classification protected by federal, state, or local law. We strive to create a workplace where every voice is heard, and every idea is respected.   Redis is committed to working with and providing access and reasonable accommodation to applicants with mental and/or physical disabilities. If you think you may require accommodations for any part of the recruitment process, please send a request to recruiting@redis.com. All requests for accommodations are treated discreetly and confidentially, as practical and permitted by law.   Redis reserves the right to retain data longer than stated in the privacy policy in order to evaluate candidates.