Vacancy expired!
Description
Robert Half is currently seeking a Security Compliance Engineer, that will be responsible for compliance and risk management. Will ensure that security policies and standards are implemented and adhered to while also managing exceptions and driving remediation plans.Being responsible with developing, implementing, and administering the Cybersecurity program/systems to ensure sensitive data/systems are protected by monitoring, auditing, and enforcing compliance/program's Cybersecurity policies, procedures, guidelines, standards, and government regulations.Responsibilities:• Monitor and audit SIEM, UBA, IPS, EDR and Firewall platforms and provide ongoing feedback to enhance security and detection capabilities to catch advanced threats, build advanced correlation use cases, and build metrics/reports. The candidate will develop and manage continuous improvement of security controls for Threat and Vulnerability Management.• Responsible for administering GRC platform that's used for managing risks throughout the company, keeping Cybersecurity Risk Register updated, and for tracking compliance with various standards and regulations.• Responsible for Vendor Risk Management by conducting due diligence before onboarding new vendors that handle sensitive data.• Respond to enterprise and business customers' security assessments and questionnaires, RFPs, and work with legal team to review security clauses in contracts as necessary.• Draft, update and manage policies, procedures, and controls to ensure that Mediacom meets and maintains compliance with standards and regulations.• Responsible for PCI Self-Assessment, annual internal audit to demonstrate PCI compliance, and continuous monitoring throughout the year by collecting evidence artifacts and documentation as necessary. Serve as primary POC for internal and external audits• Participate in threat modeling and risk analysis for new projects as necessary.Preferred Experience:• 5+ years with reviewing system and application architecture documentation and assessing compliance with security standards and controls and prepare a report to identify remediation requirements.• 2+ years with vulnerability, SAST/DAST scanning tools, reviewing scan results and determining the risk and impact of vulnerabilities to ensure compliance with Cybersecurity standards.• 3+ years in monitoring and auditing security platforms like SIEM, UBA, IPS, EDR, Next-Gen Firewalls and Attack Surface Management.• Experience in working with compliance frameworks such as ISO 27001, PCI, NIST CSF, NIST 800-53, SOC2, CCPA, GDPR etc.,• Experience with GRC platforms• Experience with Third Party Risk Management.• Experience in responding to customer's security requirements in RFPs and reviewing security contracts clauses, and performing vendor assessments• Ability to understand controls and processes associated with legal, regulatory, and compliance security frameworks• Excellent verbal and written communication skills to be able to interact with technical and non-technical staff as well as senior management.• Experience in handling security for a large enterprise network or service provider network preferred• BA or BS degree in Engineering Technology, Computer Science, or a related field• Security certifications such as CISSP, CISA, CISM, CRISC, OSCP and SANS GIAC is a plus Requirements Vulnerability Scanning, NIST, NextGen, GRC, Certified Information Systems Auditor (CISA), CISSP, Cyber Security Technology Doesn't Change the World, People Do.®Robert Half is the world's first and largest specialized talent solutions firm that connects highly qualified job seekers to opportunities at great companies. We offer contract, temporary and permanent placement solutions for finance and accounting, technology, marketing and creative, legal, and administrative and customer support roles.Robert Half puts you in the best position to succeed by advocating on your behalf and promoting you to employers. We provide access to top jobs, competitive compensation and benefits, and free online training. Stay on top of every opportunity - even on the go. Download the Robert Half app and get 1-tap apply, instant notifications for AI-matched jobs, and more.Questions? Call your local office at 1.888.490.4429. Robert Half will consider qualified applicants with criminal histories in a manner consistent with the requirements of the San Francisco Fair Chance Ordinance. All applicants applying for U.S. job openings must be authorized to work in the United States. Benefits are available to temporary professionals. Visit https://roberthalf.gobenefits.net/ for more information.© 2022 Robert Half. An Equal Opportunity Employer. M/F/Disability/Veterans. By clicking "Apply Now," you're agreeing to Robert Half's Terms of Use.