Cloud Compliance Analyst

McLean, Virginia
May 05, 2022
Jun 04, 2022
Full Time
Here at Appian, we're passionate about automation, speed, and efficiency; and the CIO department is a great place to apply these values! From Information Security, Business Technology, to Solution Engineering, joining Appian will provide you with the opportunity to lead technical strategy, execution and communication for all applications to support Appian employees, customers, and partners across the world. Join us, as we work collaboratively to grow Appian across the world.

Appian is seeking a Cloud Compliance Analyst to join our internal Security Team. The Cloud Compliance Analyst will be responsible for assessing security and compliance requirements, industry best practices, and customer commitments. The Cloud Compliance Analyst must have experience interacting with process owners, testing and documenting large control sets, handling inquiries from external auditors, and assessing security/compliance risk. The role will be heavily focused on evaluating technology controls internally against public sector frameworks (e.g., FedRAMP, DISA IL, FISMA, NIST) and is regularly updated to address upcoming industry risks.

Appian is headquartered in the McLean, Virginia area, and we are supportive of both Remote and Hybrid work environments.

To be successful in this role, you will:
  • Support the implementation of the strategic vision for Technical Compliance that is aligned with company vision.
  • Evaluate new and evolving regulations programs.
  • Assess potential regulatory changes for impact on Security compliance objectives.
  • Translate regulatory requirements to internal business partners and drive alignment on compliance requirements.
  • Develop engineering guidelines based on regulatory requirements.
  • Work collaboratively with a team as a compliance specialist in at least one area of expertise.
  • Assist in defining regulatory controls sufficiently to address the required objectives of the regulatory body in a manner consumable by engineering teams.
  • Proactively identify gaps or conflicts in existing processes and drive remediation of control deficiencies identified during the audit process.
  • Assist with the education and training of process/control owners so they better understand the technology controls framework and their responsibilities.
  • Support the implementation of the strategic vision for Technical Compliance that aligns with the company's direction.
  • Build strong relationships with business partners (Information Security/Security GRC, Internal IT, Legal, Engineering, and Products team) and facilitate continuous improvement aligned with operational processes.
  • Effectively communicate program execution status, key accomplishments, and risks to management both within the compliance center and to our business partners.
  • Drive continuous improvement by interfacing with internal business partners and leveraging prior IT audit experience to add value.

Some of the tools and resources we will equip you with include:
  • Days filled with unique and exciting challenges-everyday is different!
  • Advancement opportunities across the organization to help you meet your career goals
  • Appian product training, plus additional training programs to help you develop the skills required to be successful in your role
  • Our team is rapidly growing, and with growth comes opportunity!
  • Unlimited (flex) PTO, hybrid working arrangement, and flexible working hours.

Basic qualifications:
  • Strong knowledge of Public Cloud Service Providers (AWS, Google, Azure), specifically the types of services offered and industry standard internal controls and best practices for configuring and managing these services (AWS preferred).
  • Experience on NIST SP 800 Series, FedRAMP and FISMA
  • Experience and familiarity with DoD Impact Level (IL) standards
  • Previous experience with SaaS/PaaS/IaaS provider who has achieved a Marketplace ATO
  • Experienced in writing Technical documentation and knowledge of Cloud and Security concepts
  • Experience with writing, editing, and/or managing a wide variety of IT security documentation and familiarity with federal IT standards such as Federal Information Security Management Act (FISMA)
  • Experience interviewing subject matter experts and using knowledge to develop, edit, and revise documentation including standard operating procedures, system security plans, and policies and procedures.
  • Experience with the production and/or editing of technical drawings using Draw.IO/Visio or similar design tools.
  • Experience with technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, FISMA A&A, and continuous monitoring, and POA&M management.
  • Understanding of Third-party Assessment Organizations (3PAO)

About Appian

Before Appian was a company, it was an idea. Not about a product or a market, but about the culture needed to sustain innovation and value. Today, we help businesses build apps and workflows rapidly, with a low-code automation platform.

Appian was founded on the belief that talented and passionate people, given the power and autonomy to excel, will deliver amazing impact. We have worked thoughtfully to create an inclusive, agile and collaborative work environment where employees feel challenged, and all voices are heard. We value and encourage cross-departmental collaboration, and actively seek opportunities to better ourselves and others. Creating impact to us means that when we deliver results, we're focused on lasting positive change.

Join us.

Appian Corporation is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected Veteran status, age, or any other characteristic protected by law. Further, Appian will not discriminate against applicants for inquiring about, discussing or disclosing their pay or, in certain circumstances, the pay of their co-worker, Pay Transparency Nondiscrimination .

If you need a reasonable accommodation for any part of the employment process, please contact us by email at and let us know the nature of your request and your contact information. Requests for accommodation will be considered on a case-by-case basis. Please note that only inquiries concerning a request for reasonable accommodation will be responded to from this email address.



Similar jobs