How Remoteville checks and expires listings
Cyber Security Compliance Engineer
Skills
Computer ScienceCybersecurityEthical HackingInformation SecurityNISTRegulatory AuditsSecurity Controls
What the job involves
The main requirements, responsibilities and hiring steps.
Requirements
- B.A./B.S. degree in Computer Science or related field, or equivalent work experience
- 4+ years of security or compliance experience in a SaaS environment and/or heavily regulated environment
- Strong understanding of Cybersecurity frameworks, regulations, and standards (FedRAMP, NIST, ISO 27001, GDPR, DORA, SOC, etc.) and their application in business context
- Knowledge of TPRM, SOX Reporting
- Knowledge of NIST Framework, ISO framework and GRC processes
- Cloud Security Experience
- Understanding of SOC 1 and 2
- Experience with Loopio
- Prior knowledge and understanding of relevant legal and regulatory requirements, such as SANS and ISO27001, FFIEC, MAS, DORA, GDPR, etc.
- Prior knowledge and understanding of common information security management frameworks such as HITRUST, ISO, IEC27001, ITIL, COBIT
- Experience with regulatory audits
- Knowledge in Procurement and sourcing
- CISSP, CISM or other information security certification preferred
- Strong planning and organizational skills; project management experience is a plus
- Strong attention to detail with the ability to prioritize multiple projects, along with excellent verbal, written, and interpersonal communication skills.
- Ability to influence at all levels and in various departments
- Ability to set priorities, meet deadlines, and manage multiple projects in a fast-paced, changing environment
- Exceptionally strong personal integrity, and ability to professionally handle confidential matters while showing an appropriate level of good judgment and maturity
Nice to have
- Project management experience
- Excellent communication skills
- Ability to influence at all levels
Day to day
- Serve as the customer-facing role within the Information Security team, responsible for supporting customers and prospects with their security due diligence
- Improve processes, manage documentation libraries, and handle security-related deliverables for customers
- Manage customer and prospect assessments and audits in alignment with regulatory compliance and industry standards
Hiring process
- Not specified
