Information Security Compliance Specialist
3 weeks ago
Job Summary:
As a compliance specialist you’ll work in the IT Infrastructure and Security department, collaborating with many stakeholders and ensuring that the organization meets industry standards or customer requirements for security. You’ll lead the procedures to ensure compliance with Payment Card Industry Data Security Standard (PCI DSS), Service Organization Control Type 2 standard (SOC 2), as well as the procedures to ensure that other applicable technical guidelines are managed and coordinated effectively across the business.
You will have the opportunity to wear several hats, and you should be comfortable learning new things and taking on new responsibilities. You’ll spearhead strategic initiatives through coordination of security and compliance efforts, and you’ll drive responsiveness to responses for proposals and sales initiatives but answering compliance needs.
Duties and Responsibilities:
Responsibilities include:
- Planning and leading organization-wide security audits to ensure compliance with the Payment Card Industry Data Security Standard (PCI DSS), Service Organization Control Type 2 standard (SOC 2), and various other mandates
- Working with information technology (IT) departments to coordinate audits, both internally and externally
- Developing, preparing, and reviewing documents related to compliance and assessments.
- Scheduling and performing vulnerability tests and developing strategies to mitigate any weaknesses discovered.
- Designing remediation efforts when security deficiencies are found.
- Coordinating annual audits for the IT organization
- Planning and maintaining compliance activities according to existing policies and standards as well as industry regulations.
- Pointing out the shortcomings associated with existing platform security and compliance processes and developing ways to address them in conjunction with engineering and product.
- Working with third parties and consultants as needed for independent security audits.
- Owning a library of compliance related documentation to address audits, RFP responses, contract security amendments and/or Exhibits, third-party risk management questionnaires, etc.
- Assist with various internal and external audits, and their responses and remediation efforts.
- Communicate to senior management, through reports, presentations, metrics and other documentation, any cyber-security risks identified.
- Perform other duties as assigned.
Education and Experience:
- Bachelor’s degree in Information Security strongly desired.
- Master’s degree in CyberSecurity or equivalent work experience desired.
- 3+ years of technical experience, either in software organizations or directly in a technical role.
- Demonstrated experience in building business cases, understanding cost and pricing structures a plus.
- Prior experience as a Qualified Security Assessor a plus, but not required.
- Microsoft Certified: Security, Compliance, and Identity Fundamentals certificate desired but not required.
Knowledge, Skills and Abilities:
- Ability to read, analyze and interpret information as it pertains to compliance-related functions and regulations.
- Experience with PCI DSS and payments audit procedures.
- Proven track record in companies with cloud computing and security management
- Excellent communication skills (both written and verbal) with the ability to explain complex information in a simple and accurate manner
- Process, problem-solving, strategic, and continuous improvement mindset
- Ability to influence without direct management authority.
- Ability to define issues, collect data, establish facts, and draw valid conclusions.
- Proficient in computer programs, such as word processing and spreadsheet software programs.
Work Environment:
The noise level in the work environment is usually moderate as the employee works in an office setting, at an individual workstation, using telephone and computer
Physical Demands:
- Must be able to remain in a stationary position for most of the day
- Constantly operates a computer and other office productivity machinery, such as a printer/copy machine
- This position needs to occasionally move about inside the office
- The person in this position frequently communicates via telephone
Avenu Summary:
Avenu provides local governments with ways to achieve more predictable revenue that supports growth, fuels modernization and ensures compliance with mandated but underfunded programs. Avenu’s revenue enhancement and administrative solutions find and recover license, permit and other taxes that cities and counties struggle to collect. The insights and improved fiscal posture enables governments to deliver expected services and sustain a high quality of life for residents.
Avenu is an Equal Opportunity Employer. Selection for a position will be made without regard to race, religion, national origin, sex, political affiliation, marital status, non-disqualifying physical handicap, and age.
-
Information Security Compliance Specialist
4 weeks ago
Centreville, United States Avenu Insights & Analytics Full timeJob DescriptionJob DescriptionJob Summary:As a compliance specialist you’ll work in the IT Infrastructure and Security department, collaborating with many stakeholders and ensuring that the organization meets industry standards or customer requirements for security. You’ll lead the procedures to ensure compliance with Payment Card Industry Data Security...
-
Information Security Compliance Specialist
3 weeks ago
Centreville, United States Avenu Insights & Analytics Full timeJob DescriptionJob DescriptionJob Summary:As a compliance specialist you’ll work in the IT Infrastructure and Security department, collaborating with many stakeholders and ensuring that the organization meets industry standards or customer requirements for security. You’ll lead the procedures to ensure compliance with Payment Card Industry Data Security...
-
Senior Information Security Analyst
1 month ago
Centreville, United States AutomotoSocial Full timeJOIN OUR WINNING TEAM AS A SENIOR DEV OPS SECURITY ANALYST AT CARFAX WE ARE CONSTANTLY EXPANDING OUR PRODUCT AND TECHNOLOGY OFFERINGS! This means we are continually bringing new, innovative products to market through exciting technology initiatives to help our customers. Come join the success in Biz Tech. As a Senior Dev Ops Security Analyst, you will...
-
Senior Information Security Analyst
3 weeks ago
Centreville, United States AutomotoSocial Full timeJOIN OUR WINNING TEAM AS A SENIOR DEV OPS SECURITY ANALYST AT CARFAX WE ARE CONSTANTLY EXPANDING OUR PRODUCT AND TECHNOLOGY OFFERINGS! This means we are continually bringing new, innovative products to market through exciting technology initiatives to help our customers. Come join the success in Biz Tech. As a Senior Dev Ops Security Analyst, you will...
-
Senior Information Systems Security Engineer
1 week ago
Centreville, Virginia, United States Fusion Technology Full timeJob Description Job Description Who is Fusion Technology?Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's Criminal Justice Information Services Division's Headquarters. Founded in 2007 by an Engineer-by-trade,...
-
Senior Information Systems Security Engineer
4 weeks ago
Centreville, United States Fusion Technology LLC Full timeJob DescriptionJob DescriptionWho is Fusion Technology? Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's Criminal Justice Information Services Division's Headquarters. Founded in 2007 by an...
-
Senior Information Systems Security Engineer
1 week ago
Centreville, United States Fusion Technology LLC Full timeJob DescriptionJob DescriptionWho is Fusion Technology? Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's Criminal Justice Information Services Division's Headquarters. Founded in 2007 by an...
-
Senior Information Systems Security Engineer
3 weeks ago
Centreville, United States Fusion Technology LLC Full timeJob DescriptionJob DescriptionWho is Fusion Technology? Fusion Technology is a performance-driven HUBZone Small Business concern residing in the heart of the beautiful mountainsides of West Virginia, steps away from the Federal Bureau of Investigation's Criminal Justice Information Services Division's Headquarters. Founded in 2007 by an...
-
HR Compliance Senior Consultant
1 week ago
Centreville, Virginia, United States Parsons Corporation Full timeWe are looking for a talented HR Compliance Senior Consultant In a world of possibilities, pursue one with endless opportunities. Imagine Next When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be...
-
Servicenow Developer with Security Clearance
3 weeks ago
Centreville, United States FootBridge Consulting Full timeJob Title: ServiceNow Administrator / Engineer Company: Footbridge Federal Location: Remote Overview: We are seeking a dedicated and skilled ServiceNow Administrator / Engineer to join our team. This fully remote role is ideal for someone with a strong background in ServiceNow administration and engineering, and who holds an active TS/SCI clearance. The...
-
Global Mobility Support Specialist
2 weeks ago
Centreville, United States Parsons Corporation Full timeIn a world of possibilities, pursue one with endless opportunities. Imagine Next! When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next,...
-
Project Control Specialist
1 month ago
Centreville, Virginia, United States Parsons Corporation Full timeIn a world of possibilities, pursue one with endless opportunities. Imagine NextWhen it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next,...
-
Project Control Specialist
3 weeks ago
Centreville, Virginia, United States Parsons Corporation Full timeIn a world of possibilities, pursue one with endless opportunities. Imagine NextWhen it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your next,...
-
Junior Network Engineer with Security Clearance
3 weeks ago
Centreville, United States FootBridge Consulting Full timeJob Title: Junior Network Engineer Location: Remote Overview: We are currently seeking a motivated and technically skilled Junior Network Engineer to join our remote team. The ideal candidate should possess a Top Secret security clearance and have foundational knowledge and experience with Cisco routers. This role offers a great opportunity for professional...
-
Global Mobility Support Specialist
2 weeks ago
Centreville, United States Parsons Corporation Full timeIn a world of possibilities, pursue one with endless opportunities. Imagine Next! When it comes to what you want in your career, if you can imagine it, you can do it at Parsons. Imagine a career working with intelligent, diverse people sharing a common quest. Imagine a workplace where you can be yourself. Where you can thrive. Where you can find your...
-
Inventory Specialist
3 weeks ago
Centreville, United States CVS Health Full timeBring your heart to CVS Health. Every one of us at CVS Health shares a single, clear purpose: Bringing our heart to every moment of your health. This purpose guides our commitment to deliver enhanced human-centric health care for a rapidly changing world. Anchored in our brand — with heart at its center — our purpose sends a personal message that how we...
-
Cloud Security Engineer
4 weeks ago
Centreville, United States CARFAX Full timeJoin Team CARFAX as a Cloud Security Engineer Isn't it time you bragged about where you work? At CARFAX, we do, every day. We pride ourselves on being mission-focused on helping to grow a brand built on accuracy and integrity. We care deeply about our products and our customers. We’re more than just a company: We help millions of consumers make...
-
Talent Acquisition Operations
4 weeks ago
Centreville, United States Riverside Research Institute Full timeRiverside Overview: Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country’s most challenging technical problems. All Riverside Research opportunities require U.S....
-
Talent Acquisition Operations
1 day ago
Centreville, United States Riverside Research Institute Full timeRiverside Overview: Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country’s most challenging technical problems. All Riverside Research opportunities require U.S....
-
Program Manager with Security Clearance
1 month ago
Centreville, United States FootBridge Consulting Full timeJob Title: Program Manager (Remote - FFRDC Program Support)Company: Footbridge FederalOverview:We are currently seeking a dynamic and experienced Program Manager to oversee and guide a critical program supporting a Federally Funded Research and Development Center (FFRDC). This fully remote role demands a seasoned professional with a strong background in...
