Nvidia Lead Certifications Analyst 

United States, Texas 

674010094

What you’ll be doing:

• Lead the lifecycle including planning, execution and improvement of security certifications, including but not limited to ISO27001, SOC2 and NIST 800 series.

• Define, implement and operate compliance and audit processes, continuously improving certification workflows.

• Drive collaboration with internal teams to reduce the cost and complexity of certification efforts

• Drive certification request triage & collaborate prioritization

• Manage audit onboarding, preparation and external assessment

• Own delivery of certification roadmap including reporting & escalations

• Coordinate export control related continuous compliance audits

• Recommend and implement continuous improvements for process efficiency and compliance with evolving standards.

What we need to see:

• Ability to interpret and integrate security frameworks into organizational processes

• Previous experience developing and operating certification onboarding programs

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), ISO 27001 Lead Auditor/Implementer, CMMC Certified Professional or Assessor, NIST Cybersecurity Framework certifications or equivalent training.

• Experience with multiple certifications (e.g., leading both ISO 27001 and CMMC simultaneously).

• Advanced skills in data analytics or visualization tools (e.g., Tableau, Power BI) for reporting compliance metrics.

• Working knowledge of certifications and their applicability to hardware, software, cloud and enterprise scopes.

• 12+ years in information security, compliance overseeing compliance programs or certification lifecycles.

• Hands-on experience leading or supporting end-to-end certification processes, including scoping, implementation, audits, and renewals.

• Consistent track record of leading compliance audits, including internal audits, external audits, and interactions with certification bodies.

• Bachelor's degree in Information Security, IT, Compliance, or a related field, or equivalent experience (Master’s preferred).

Ways to stand out from the crowd:

• Big 4 or equivalent assessment / advisory experience

• Past experience with mergers and acquisitions

• Working knowledge of export controls including but not limited to ITAR / EAR / ACS IFR

• Familiarity with cloud security providers (e.g., AWS, Azure, or Google Cloud compliance).

• Solid understanding of GRC principles and hands on implementation