Staff Information Security Compliance Engineer
Remote - United States
Tealium Inc.
Tealium is a customer data platform (CDP) that connects your data so you can connect with your customers!Founded in 2008, Tealium’s patented and award-winning solutions are used by over 1,000 of the world's most innovative brands, including Sony, Providence St. Joseph Health, Cambria Health, T-Mobile, Hulu, Uber, Facebook, Expedia, Hyatt, Barcelo Hotel Group, Sportsbet, Utah Jazz, American Airlines, The Gap, Orange, and many others.
WHAT WE ARE LOOKING FOR:This role is an experienced Information Security Compliance subject matter expert who will take a lead role in improving our compliance and security program. This position will focus on three areas: Audit/Compliance support, Vendor Risk Management and RFX (answering customer security questionnaires). You will have excellent communication skills, a solid foundation in information security principles and an expertise in information security management systems as it relates to compliance with applicable frameworks. Strong understanding of privacy laws and regulations like GDPR, CCPA/CPRA and other similar regulations. This position reports to the Director of Platform Security.
This opportunity is for you, if you are:Excited to work across the many Tealium products and servicesEmpathetic, patient and passionate about helping Tealium improve its security postureConstantly looking for security technological innovation opportunitiesDriven to help customers accelerate their digital transformation
Your Day to Day:
- Support the maintenance of Tealium’s certifications: HIPAA, SOC2 Type 2, ISO 27001, ISO 27701, ISO 27018, TISAX Level 1
- Conduct Vendor Risk Management assessments of critical Tealium vendors
- Respond to customer information security RFX requests (security questionnaires)
Why You Are the Perfect Fit:
- You have 5+ years total experience in information security
- You have 3+ years experience working with Cloud Hosting Environments such as AWS, Azure, GCP and others in a high traffic global business
- You have earned a bachelor’s degree in an Information Technology related field of study or equivalent experience; relevant, industry recognized security certification such as CISSP, CISA, CSSLP, or CRISC
- You have deep knowledge of information security principles and technologies such as Security Incident and Event Management (SIEM), intrusion prevention and detection (IPS/IDS), firewalls, proxies, web filters, email filters, web application firewalls, and end-point anti-virus, etc
- Familiarity with networking, operating systems, web applications, common techniques used by hackers/attackers and cloud technologies (i.e. IaaS, PaaS, SaaS) and cloud platforms (AWS, Azure etc)
- Experience with compliance frameworks such as SOX, HIPAA, SOC2, ISO 27001, ISO 27018, ISO 27701 are a must; familiarity with NIST 800-171 and 800-53, FedRAMP, HITRUST and PCI DSS is nice to have
- Excellent problem solving and analytical skills, as well as outstanding oral and written communication skills
- The ability to work in a fast-paced environment and the ability to deal with ambiguity
- Ability to handle multiple competing priorities and work well under minimal supervision
Our corporate HQ is located in sunny San Diego, just minutes from the beach and surrounded by beautiful hiking trails and the renowned Torrey Pines golf course. Our location is just one of the many perks we enjoy; At Tealium we dress casually (but professional), enjoy a flexible paid time off policy, rich benefit plans, company holidays, 401(K) match, and employee Stock Options - just to name a few. If you are interested in being a part of Team Teal, we’d love to hear from you!
TEAL celebrates diversity and is an equal opportunity employer. It is our continuing policy to recruit and employ the best qualified individuals without regard to race, color, sex, religion, national origin, disability, age, sexual orientation, gender identity, and/or any other protected characteristic. TEAL does not tolerate unlawful discrimination of any kind and strives to be an inclusive and respectful workplace.
Tags: AWS Azure CCPA CISA CISSP Cloud Compliance CRISC FedRAMP Firewalls GCP GDPR HIPAA HITRUST IaaS IDS Intrusion prevention IPS ISO 27001 NIST PaaS PCI DSS Privacy Risk management SaaS SIEM SOC 2 Strategy TISAX
Perks/benefits: 401(k) matching Equity Flex hours Flex vacation Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs