Security, Privacy and Compliance Manager

21 сентября 2018    36
Откликнуться
We are looking for a Security and Compliance Manager to lead our security and compliance efforts and support our rapid growth within the Enterprise market. Candidates should have the potential to serve as ScheduleOnce's top authority on all security and compliance matters. 

Please note:
  • ScheduleOnce operates virtually and all employees work remotely from home.
  • Urgent security and privacy incidents may require out-of-hours responses, including nights and weekends. 

Roles and responsibilities
  • Ensure compliance with security and privacy frameworks (PCI, HIPAA, GDPR, etc.)
  • Define security policies and controls in line with SOC2, ISO27001 and NIST standards
  • Suggest and implement continuous improvements to ScheduleOnce security through an ongoing risk management process
  • Manage security of production and QA environments
  • Manage IT and security of employee devices across a geographically distributed team
  • Develop and deliver training and security awareness programs to employees
  • Provide an information security perspective on compliance with client agreements
  • Develop security policies and standards and ensure they are implemented and followed
  • Ongoing monitoring of the company’s security and compliance health on all fronts
  • Act as a subject matter expert on security and privacy throughout the product development lifecycle
  • Define and manage the company’s security and compliance roadmap

Requirements:

  • 2 years of experience in a relevant role 
  • Information security certification is an advantage (CISSP or CISM) 
  • Experience with security and privacy frameworks (SOC2, ISO27001, HIPAA, PCI, NIST, CSA, EU Privacy Shield)
  • Experience writing professional requirements and policy documents
  • Experience with cyber security concepts, protocols, processes, architectures and tools 
  • Excellent English, written and verbal communications skills (Native)
  • Hands on, fast learner, good team working skills and highly motivated
  • Knowledge of Information Security/Risk Management best practices
  • Understanding of business and technical risk, how to translate between the two and communicate to various levels of technical and business stakeholders

Employment details:

  • Full time position 
  • 100% work from home in a virtual environment 
  • Non-standard hours might be required 

What we offer:

  • Dental insurance 
  • Medical Insurance 
  • 401K Plan 
  • Paid vacation days
  • Paid sick days 
  • Company provided laptop and headset
  • Opportunity to travel for the company bi-annual international retreats

    Подписывайтесь на наш телеграм-канал @remotelist, чтобы всегда быть в курсе новых вакансий! Дайджесты с новыми вакансиями появляются каждые 2-3 часа.

    Еженедельная рассылка топ-15 самых просматриваемых вакансий сайта. Письмо приходит каждое воскресенье.