Please direct your responses to: frivera@otmcorp.com
Compliance Manager needed for a long-term direct client project. *Local candidates with Local Experience preferred due to in person interviewing. (Local = San Francisco Bay Area).
Responsibilities:
Create and track fiscal year planning with roadmap
Create and track metrics for deliverables
Create regular deliverables (monthly, quarterly, annually) and ensure required documentation and artifact is provided by others
Facilitate the creation of tools to assist in automation of compliance activities
Provide advice and guidance to functional departments and leadership teams on policies and best practices for information security
Provide guidance to ensure consistent interpretation of compliance and control implementation
Facilitate external and internal audits with auditors and stakeholders
Manage information security risk assessments and controls selection activities
Manage remediation activities working with remediation owners to drive to resolution
Create information security reports based on metrics and analysis of data
Lead the preparation and implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Governance Committee
Manage and lead the Information Security Management System Governance Committee
Manage and lead the design and operation of related compliance monitoring and improvement activities to ensure compliance with internal policies, applicable laws and regulations, certifications, and customer contracts
Develop and deliver education and training material on the Information Security Management System
Prepare quarterly and annual security awareness communications on the Information Security Management System
Manage, review, examine and monitor artifacts and evidence provided in support of compliance
Assist in development of strategy for the future direction of the Information Security Management System and Compliance
Drive initiatives by defining the project, creating schedules and working with project team members to achieve project goals
Required Skills/Experience:
10+ years in Information Security
5+ years working with large scale, global, production Cloud systems
Experience with ISO 27001 preferred
Experience with SOC 1/2/3 (SSAE16) preferred
Experience with FedRamp (NIST SP 800-53) preferred
Experience with HITrust preferred
Experience engaging with senior stakeholders
Experience working with large scale, global, production Cloud or SaaS systems preferred
Experience in a large, global company
Experience in Security Operations
Experience working with Engineering and Operations teams
Effectively distill complex ideas and clearly communicate them to others
Extreme attention to detail is a must
Excellent self-starter with the ability to work independently; comfortable with varying degrees of ambiguity
Excellent Microsoft Word, PowerPoint and Publisher skills
Excellent written and verbal communication skills
Excellent process review and mapping skills
Knowledge and technical understanding of system architectures (network, servers, storage)
Knowledge of change management principles, methodologies, and tools
Knowledge of vulnerability management principles, methodologies, and tools
Knowledge of incident response management principles, methodologies, and tools
Knowledge of ISMS management principles, methodologies, and tools
Knowledge of Agile and DevOps methodology preferred
ISO 27000 series Lead Auditor or Lead Implementer preferred
CISSP certification preferred
Additional security certifications desired
Industry relevant project management certifications (PMP, Prince 2)
Ability to work effectively with teams located across multiple cities, countries, and cultures
OTM Software Professionals is a locally owned and operated company in the Silicon Valley working on the hottest projects. We offer direct support to all of our employees as well as excellent benefits. Do you have the skills, experience and drive to become a part of the OTM team? Apply today to become part of the OTM team!
Posted by: KIT List Jobs <jobposting2@kitlist.org>
| Reply via web post | • | Reply to sender | • | Reply to group | • | Start a New Topic | • | Messages in this topic (1) |
Join the new KIT Resources List!
You'll get job tips, notices for free or low-cost career events, services, and job fairs. Just send an email to:
KITlistResource-subscribe@yahoogroups.com
Please go to www.KITlist.org to join, post jobs, or see our FAQs. If you have any comments or questions, you can reach us KITtechmoderator@KITlist.org.
By using the KIT List you agree to comply with the Terms of Use on the site, and will not use discriminatory employment practices. The KIT List is a service of Connelly Communications, Inc.
TO UNSUBSCRIBE:
Replying to KIT emails with an "unsubscribe" request does not work.
Instead, just send an email (from the same account you used to subscribe) to KITlist-Tech-unsubscribe@yahoogroups.com. If you are still receiving emails after a few days, please email us at KITtechmoderator@KITlist.org and we will manually remove you. Thanks!
No comments:
Post a Comment