Senior Compliance Specialist

Cloudflare, San Francisco, CA

Help us build a better Internet

About Us

At Cloudflare, we have our eyes set on an ambitious goal: to help build a better Internet. Today, Cloudflare runs one of the world’s largest distributed networks that powers more than 1.5 trillion pageviews each month across 5 million Internet properties. More than 10 percent of all global Internet requests flow through Cloudflare’s network. Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code.

Our customers range from Fortune 500 companies and nonprofits to small businesses and budding entrepreneurs. Every day, about 12,000 new customers sign up. We’re working to create a faster, more secure, and more reliable experience for anyone online and given the scale at which we operate, our mission is big. Our team is hard at work shaping the future of the Internet by solving some of its toughest challenges. Come join us.

About the Department

Cloudflare’s Engineering Team builds and runs the software that handles about 10% of HTTP requests on the Internet today. We also build and run the internal tools that builds and runs our software. The Engineering Team is split into two groups: one handles product development and the other handles operations. Product development covers both new features and functionality and scaling our existing software to meet the challenges of a massively growing customer base. The operations team handles one of the world’s largest networks with data centers in 102 cities worldwide.

About the Role

We are looking to hire a compliance specialist to help build out our San Francisco based compliance team. This role will be responsible for managing a wide range of compliance operational matters supporting Cloudflare’s growing business.

In Cloudflare compliance is seen as an extremely important business function. Not only is it an in incredibly important tool to give our customers confidence in our products, but it is also the pathway to a well tuned, functional Information Security management system and program. We do not believe in tick-box security, for us compliance is a pathway to doing things right. For this reason we are extremely careful about which programs we commit to and how we integrate them into the business.

This will be a chance to work on real security problems in a Billion dollar business. We guarantee that you won’t get bored.We are the most attacked company on the internet, for good reason. So it should come as no surprise why we need someone who thinks like a hacker too.


  • Own one of Cloudflare’s major compliance programs from top to bottom.

  • Establish, implement and work to improve appropriate compliance processes (including compliance monitoring)

  • Work with external auditors to achieve compliance within agreed timeframes

  • Work with Internal teams to achieve and report annually on compliance

  • Work to constantly improve our compliance position and status

  • Work to integrate lessons from compliance into the business’s security program

  • Work as part of the Information Security team on constantly improving security

  • Advise on all international regulatory and compliance matters

  • Work with the Sales and product teams on compliance/regulatory matters

  • Have input into the overall compliance strategy

  • Help guide our overall security policy and architecture

  • Drive security awareness and compliance across the business


  • Experience with working on major compliance programs in a large company: should have seen at least one program initiative through from start to finish.

  • Familiarity with several of HIPAA, SSAE16 SOC 2, PCI DSS, PA DSS, ISO 27001 & 27002, ISO 27017 & 27018, FedRAMP, NIST 800-XX Frameworks, SOX

  • Intimate knowledge of at least one of the programs listed above

  • Strong technical background

  • Strong Infosec experience - CISSP, CISM, CCNA, CCNP a big plus

  • Security and Risk Management experience - CISA, CRISC, CISM a plus

  • Solid Project Management Experience

  • Ability to work cross-functionally with internal stakeholders

  • Ability to work efficiently and independently in a fast-paced, high-volume environment.

  • Some people management experience

  • Comfortable working with data and data visualization

  • Strong communication skills

What Makes Us Special

We’re not just a highly ambitious, large-scale technology company. We’re a highly ambitious, large-scale technology company with a soul. Fundamental to our mission to help build a better Internet is protecting the free and open Internet. In 2014, we launched Project Galileo, an initiative through which we partner with global NGOs to identify websites at risk of attack and provide the same state-of-the-art mitigation technology already used by Cloudflare’s enterprise customers--at no cost. Project Galileo equips politically and artistically important organizations and journalists with powerful tools to defend themselves against attacks that would otherwise censor their work.

Additionally, in 2016, we announced our partnership with Path Forward, a nonprofit organization that works with companies to create 18-week positions for mid-career professionals who want to get back to the workplace after taking time off to care for a child, parent, or loved one. With the lofty goal of shaping the future of the Internet, we’re focused on recruiting the best and the brightest, no matter what.

Cloudflare is a security company. A successful background check is required for employment.

Cloudflare hires the best people based on an evaluation of their abilities and effectiveness.  We don't discriminate against employees on the basis of any other personal characteristic or any classification protected by federal, state or local law.

About Cloudflare

About us Cloudflare is the simplest way to make websites faster, safer and smarter. Millions of websites have signed up for our service, including large enterprises, major consumer destinations, and government agencies. With offices in San Francisco and London, Cloudflare operates a highly-available global network that has security measures built into every layer and regularly clocks in lightning-fast speeds. We're on a mission to build a better web - and we need smart, talented people to join our team. Our team works on the forefront of leading technologies including nginx, Go and Lua programming languages. We're a strong supporter of the open source community and regularly share our technology learnings at https://blog.cloudflare.com.

Want to learn more about Cloudflare? Visit Cloudflare's website.