Security Compliance Specialist

Requirements:

• Minimum 3 years of experience in information security, ideally in a public tech company or regulated industry.
• Experience in developing and implementing information security policies, standards and procedures.
• Familiarity with security standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC2.
• Strong skills in security metrics and reporting.
• Ability to engage collaboratively with technical and non-technical stakeholders.
• Excellent written and verbal communication skills.
• Confidence in delivering awareness and training sessions.

Nice to haves:

• A mix of consulting and industry experience in a relevant role.
• Industry certification such as CISM, CRISC, CISO, or CISSP.

What You'll Be Doing:

• Develop and implement information security policies, standards, and guidance in collaboration with stakeholders.
• Ensure compliance with industry standards such as NIST CSF, PCI-DSS, ISO 27001, and SOC 2.
• Coordinate responses to internal and external audits and liaise with key stakeholders.
• Develop and deliver security policy awareness and training programs.
• Assess policy compliance, track risk exposure, and support continuous compliance initiatives.
• Produce management reports on security compliance and metrics for relevant committees.

Perks and Benefits:

• Competitive benefits in areas including health, family, finance, community, convenience, growth, and relocation.
• Diverse workplace that values inclusivity and individual differences.