Sr Security and Compliance Specialist (14310708)
Apply NowCompany: aKube, Inc.
Location: Burbank, CA 91505
Description:
Job Description
City: Burbank, CA/ Seattle, WA/ Orlando, FL
Onsite/ Hybrid/ Remote: Onsite, 3 days a week
Duration:6 months extendable
Rate Range: $64/hr on W2 depending on experience (no C2C or 1099 or sub-contract)
Work Authorization: GC, USC, All valid EADs except H1b
Basic Qualifications:
1) Information security understanding
2) Jira, Microsoft Office
3) Vulnerability background
Will be responsible for auditing, and managing projects and documenting data in smart sheets
2+ years of IT security and/or IT compliance or IT technical support experience
3+ years of program and project management experience
Knowledge of laws, regulations, and industry requirements related to Information Security (i.e. EU Safe Harbor Directive, Payment Card Industry, Domestic and International Privacy regulations)
Current Experience using the following Tech Stack: Jira-SNOW-Archer-MS Office-Tenable-Wiz-AWS, Azure, GCP-Splunk-Axonious-Grafana -Networking gearTop
Preferred Qualifications:
PMP, ITILv3, CPA, CIPT, CISSP, CISA, CISM
Experienced in security, operations, and audits including but not limited to SSAE16, EU Safe Harbor, PCI, SOX
Experience working with perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.) and security tools (i.e. web application scanners, vulnerability scanners, file integrity monitoring, configuration monitoring, etc.).
Project Management Skills: Excellent written and verbal skills- Executive communication
Well versed with common security management frameworks (NIST, PCI DSS, ISO 27000)
Experience with the Management of security tools.
Analysis of information security logs
Responsibilities
Facilitate remediation and report on control findings
Facilitate remediation and report on vulnerabilities
Track Risk across the organization and drive remediation
Produce regular risk reports for executive presentations
Must be able to work independently with limited supervision
Must be able to conduct in-depth research
Must display energy and initiative in solving problems.
Follow all possible avenues to get the job done
Must undertake a variety of tasks willingly
. Ability to switch from complex to routine tasks when required
. Adapt quickly to new technologies and products. Work effectively with a variety of personalities and work styles
. Ability to make decisions quickly when faced with multiple options
Ability to influence others in decided course of action
. Experience prioritizing competing demands, scoping large efforts and negotiating timelines are necessary skills
Have the ability to create and execute project work plans and revise as appropriate to meet changing needs and requirements
Experience in managing day-to-day operational aspects of the program
Must be able to apply methodology and enforce program standards
Must minimize exposure and risk for the overall program by documenting and communicating risk to executives. Ensuring the impact of any accepted risks are fully understood.
Should provide regular communication on status, risks and change control
Strong verbal and written communication skills
Attention to detail
Thirst for knowledge and constant learning to stay up to date with the threat landscape
Remains productive while rapidly switching context
City: Burbank, CA/ Seattle, WA/ Orlando, FL
Onsite/ Hybrid/ Remote: Onsite, 3 days a week
Duration:6 months extendable
Rate Range: $64/hr on W2 depending on experience (no C2C or 1099 or sub-contract)
Work Authorization: GC, USC, All valid EADs except H1b
Basic Qualifications:
1) Information security understanding
2) Jira, Microsoft Office
3) Vulnerability background
Will be responsible for auditing, and managing projects and documenting data in smart sheets
2+ years of IT security and/or IT compliance or IT technical support experience
3+ years of program and project management experience
Knowledge of laws, regulations, and industry requirements related to Information Security (i.e. EU Safe Harbor Directive, Payment Card Industry, Domestic and International Privacy regulations)
Current Experience using the following Tech Stack: Jira-SNOW-Archer-MS Office-Tenable-Wiz-AWS, Azure, GCP-Splunk-Axonious-Grafana -Networking gearTop
Preferred Qualifications:
PMP, ITILv3, CPA, CIPT, CISSP, CISA, CISM
Experienced in security, operations, and audits including but not limited to SSAE16, EU Safe Harbor, PCI, SOX
Experience working with perimeter technologies (e.g., router, firewalls, web proxies and intrusion prevention, etc.) and security tools (i.e. web application scanners, vulnerability scanners, file integrity monitoring, configuration monitoring, etc.).
Project Management Skills: Excellent written and verbal skills- Executive communication
Well versed with common security management frameworks (NIST, PCI DSS, ISO 27000)
Experience with the Management of security tools.
Analysis of information security logs
Responsibilities
Facilitate remediation and report on control findings
Facilitate remediation and report on vulnerabilities
Track Risk across the organization and drive remediation
Produce regular risk reports for executive presentations
Must be able to work independently with limited supervision
Must be able to conduct in-depth research
Must display energy and initiative in solving problems.
Follow all possible avenues to get the job done
Must undertake a variety of tasks willingly
. Ability to switch from complex to routine tasks when required
. Adapt quickly to new technologies and products. Work effectively with a variety of personalities and work styles
. Ability to make decisions quickly when faced with multiple options
Ability to influence others in decided course of action
. Experience prioritizing competing demands, scoping large efforts and negotiating timelines are necessary skills
Have the ability to create and execute project work plans and revise as appropriate to meet changing needs and requirements
Experience in managing day-to-day operational aspects of the program
Must be able to apply methodology and enforce program standards
Must minimize exposure and risk for the overall program by documenting and communicating risk to executives. Ensuring the impact of any accepted risks are fully understood.
Should provide regular communication on status, risks and change control
Strong verbal and written communication skills
Attention to detail
Thirst for knowledge and constant learning to stay up to date with the threat landscape
Remains productive while rapidly switching context