Manager, Product Security Compliance

About the job

The Red Hat Product Security Compliance team is seeking a Manager to achieve our company’s security and compliance objectives. This work encompasses management of security controls, contract assessments, and enterprise best practices. This unique opportunity is perfect for individuals that want to build on their cyber security experience, are passionate about compliance, and want to make an impact in the company. This manager is responsible for directing, managing, and providing leadership for the organization’s information security and compliance program. This includes developing, implementing, and maintaining an information security program that meets or exceeds the requirements of industry regulations, standards, policies, and legal requirements. In addition, the manager will supervise several compliance managers within the team, build networks and extend professional relationships to internal, external stakeholders and teams.

 

What you will do

• Develops, maintains, and communicates the organization’s information security policy and procedures

• Directs and oversees the assessment, selection, implementation, and maintenance of information security tools and technologies

• Evaluate new or updated industry regulations to ensure continued compliance

• Enforces information security controls and investigates/responds to information security incidents

• Participates in business continuity planning (BCP) activities when required by regulation or senior leadership

• Prepares reports, business cases, and presentations on security risk, controls, the status of compliance efforts, etc.

• Acts as liaison between IT and other functions (e.g., legal) regarding information security events or incidents

• Manages, guides and directs other compliance managers and team members within the compliance org.

What you will bring

• A bachelor’s degree in computer information systems, or related field.

• 4+ years of management experience.

• Industry certifications preferred. Such as CISSP.

• Well-versed in industry regulations and have the ability to translate complex security concepts into layman’s terms.

Required skills and qualifications

• Must be able to effectively communicate with all levels of management.

• Strong interpersonal skills and ability to influence others.

• Detail-oriented with the ability to see the “big picture”.

• Thorough knowledge of information security and compliance concepts.

• Working knowledge of industry-leading information security tools and technologies.

• Possess strong analytical and problem-solving skills.

• Ability to work independently and manage multiple priorities simultaneously.

Preferred qualifications

• In-depth knowledge of at least one major regulatory framework (e.g., PCI DSS, HIPAA, SOC 2, ISO)

• Certifications in information security or compliance

• Experience leading audits.

• Interest in emerging technologies related to information security and compliance.

 

The salary range for this position is $157,750 - $208,975. Actual offer will be based on your qualifications.