Security Compliance Senior Analyst (Blueprint RF)
Norcross, GA - 5555 Oakbrook Pkwy Suite 140
Full Time Senior-level / Expert USD 88K - 147K
Cox Enterprises
Empower to build. The story of Cox Enterprises is one of hard work, respect for employees, entrepreneurship and making bold decisions.Company
Cox Communications, Inc.Job Family Group
Information TechnologyJob Profile
Cyber Risk & Compliance Sr AnalystManagement Level
Individual ContributorFlexible Work Option
Hybrid - Ability to work remotely part of the weekTravel %
Yes, 5% of the timeWork Shift
DayCompensation
Compensation includes a base salary of $88,300.00 - $147,100.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.Job Description
Job DescriptionBlueprint RF is searching for an Security Compliance Sr Analyst who will report to the Senior Director of Operations. This individual will contribute to the compliance and governance activities related to multiple frameworks and requirements including SOC 2, ISO 27001, PCI-DSS, and more. This individual will assist with security controls implementation and maintenance and help evolve the compliance and cybersecurity program to be more effective and efficient to enable scalability. This individual must exhibit accountability for the compliance projects and tasks assigned to them while continuing to drive actions across multiple teams. The right candidate for this role has a technical background and can apply their knowledge to information security and business operations.
Responsibilities:
- Function as the compliance liaison between business, engineering, and sales
- Collaborate with cross functional teams to validate Blueprint RF is effectively implementing and maintaining relevant security controls, understand their operations, and ensure compliance with corporate standards.
- Monitor and enhance the controls necessary to achieve and maintain SOC 2, ISO 27001, and other compliance requirements. Routinely test controls as required.
- Manage multiple compliance programs including SOC 2 and the Information Security Management System based on ISO/IEC 27001:2022 requirements.
- Effectively communicate compliance status, timelines, risk, remediation efforts to leadership.
- Maintain procedures, documentation and records necessary to comply with compliance initiatives.
- Develop, revise, and maintain remediation plans in coordination with the remediation owners. Track the remediation plans to closure.
- Maintain tools and processes that enable governance of compliance.
Minimum:
- Bachelor’s degree in a related discipline and 4 years’ experience in a related field (i.e. information security controls, information technology audit, or security risk management.) The right candidate could also have a different combination, such as a master's degree and 2 years’ experience; a Ph.D. and 1 year experience in a related field; or 8 years’ experience in a related field
- Demonstrated experience with at least 2 of the following: ISO 27001, SOC 2, PCI DSS, or NIST 800-53.
- At least one relevant industry certification, for example: CISSP, CISA, CISM, CRISC.
- Ability to work independently under minimal supervision with a team-player mentality to achieve desired business results.
- Strong attention to detail, well organized, and able to manage time effectively.
Preferred:
- Understanding of security engineering principles.
- Professional services audit or consulting background a plus.
Benefits
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, parental leave, and COVID-19 vaccination leave.About Us
Cox Communications is all about creating moments of real human connection; and for employees, that’s true both in the workplace and in the problems we solve for customers. From building advertising solutions to unleashing IoT technologies to creating an exceptional experience for customers in our retail locations and online, we’re creating a world that is smarter and more connected. Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page. Cox is an Equal Employment Opportunity employer – All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. Cox provides reasonable accommodations when requested by a qualified applicant or employee with disability, unless such accommodations would cause an undue hardship.Tags: CISA CISM CISSP Compliance CRISC Governance IoT ISO 27001 NIST NIST 800-53 PCI DSS Risk management SOC SOC 2
Perks/benefits: Flex hours Flex vacation Health care Insurance Medical leave Parental leave Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs