Description

Job Description

  • 8+ years of experience in relevant GRC functions related to Compliance & Risk Management, preferably with cloud SaaS providers.
  • 5+ years of experience in FCC Compliance, privacy, PII, PCI, auditing web applications.
  • Knowledge of SOC 2, NIST 800 171, and NIST 800 53, with strong experience in compliance
  • Manage technical and non-technical FCC Compliance and PCI compliance security controls, ensuring their fulfillment.
  • Oversight of non-conformity findings and corrections performed by technical tasks.
  • Auditing security controls related to Web application, API security, IAM, PAM, PII, CPNI, Authentication, Access Control, MFA etc. as per FCC and PCI compliance requirements and drive remediation efforts.
  • Record keeping, documentation, evidence gathering for audit readiness.
  • Develop, implement, and drive the execution and continuous improvement of cybersecurity risk management framework, processes, procedures, and activities.
  • Ensure the risk management process continuously aligns with industry best practices and industry standards.
  • Perform security and compliance risk assessments to allow for effective identification and management of cybersecurity risks.
  • Partner with teams across the organization to develop and monitor risk response plans, evaluate the effectiveness of risk mitigation strategies, track progress against plans, and validate the completion of those plans.
  • Work with senior leadership to establish and improve integration of risk management process into strategic planning processes.
  • Define risk metrics and thresholds with risk owners to identify and drive additional action on cybersecurity risk.
  • Cultivate strong working relationships with risk owners to ensure proper risk management program buy in and accountability.
  • Assist with the development of System Security Plans, Continuous Monitoring, Plan of Action and Milestones, Security Controls Assessment, Risk Exposure analysis.
  • Excellent interpersonal and communication skills to establish strong working relationships.
  • Proactive self-starter with the talent to think through technical solutions to potentially open ended problems

Education

Any Graduate