Information Security Compliance Manager

Job Summary

A company is looking for a Manager, Information Security.

Key Responsibilities

• Maintain System Security Plans (SSP) and conduct Security Impact Analysis (SIA) on major system changes
• Develop and maintain automated Plans of Action and Milestones (POAMs) and conduct internal information security audits
• Manage and track remediation of identified risks and vulnerabilities, and coordinate with field teams for vendor security assessments

Required Qualifications

• 8+ years of experience in IT Security Strategy, Risk Management, IT Audit, and Compliance with a Cloud Service Provider
• Experience with Enterprise Governance, Risk Management, and Compliance (GRC) tools
• Experience with event monitoring and alerting tools such as Datadog, Stackdriver, and Azure Sentinel
• Working knowledge of security regulations, standards, and frameworks including ISO27000, SOC2, GDPR, CMMC, FedRAMP, and NIST
• Experience with leveraging security tools within the Software Development Lifecycle (SDLC)