Senior Information Security Compliance Expert
Global
Binance
Binance cryptocurrency exchange - We operate the worlds biggest bitcoin exchange and altcoin crypto exchange in the world by volumeAre you looking to be a part of the most influential company in the blockchain industry and contribute to the crypto-currency revolution that is changing the world?
Description: The Senior Information Security Compliance Expert is a member of the Technical team, who's responsible for monitoring, managing, and closing existing compliance issues while also ensuring that internal and outsourced systems are compliant with security standards. In carrying out these functions, the responsibilities include the identification, evaluation, and interpretation of regulatory, statutory, and cooperation with the technical team to work out solutions to control deficiencies and information security risks.
Responsibilities
- Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations.
- Track financial institution & online payment-related compliance across multiple security frameworks including PCI-DSS, ISO-27001, NIST, GDPR, and FISMA and maintain up-to-date records of requirements and corresponding mitigating controls.
- Monitor third-party risk assessments and assist in performing internal risk assessments.
- Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
- Develop key performance metrics to track and ensure compliance with established policies and standards.
- Work out the realistic solution to have security risk issues and requirements fixed or fulfilled
Requirements
- Bachelor's degree in business, with IT audit or compliance experience, or computer science, with business and IT audit or compliance experience desired
- Knowledge and understanding of PCI, GDPR, FISMA, NIST, and SOC-2 information security standards and/or frameworks
- Working knowledge of common IT security-related regulations and/or standards such as Sarbanes-Oxley and ISO
- Minimum five years' experience conducting IT infrastructure security management in the financial industry
- Familiar with public clouds, like AWS, Azure, etc. understand the particular security/compliance challenge to the IT infrastructure running on public cloud
- Minimum two years experience developing or managing a security awareness program
- Strong oral and written communication skillsAbility to maintain security documentation and manualsMust have strong analytical and critical-thinking skills
- High-level of attention to detail and be a self-starter with the ability to work independently, multi-task, and adjust to shifting priorities
Tags: Audits AWS Azure Blockchain Cloud Compliance Computer Science Crypto Finance FISMA GDPR IT infrastructure Monitoring NIST
Perks/benefits: Career development Competitive pay Flat hierarchy Flex hours Relocation support
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open IPS-related jobs