Security Engineer
DIGITAL HARBOR, Inc.
Cyber SecurityDockerSDLC
Senior Analyst, Security Compliance
Xibo Open Source Digital Signage
full-time
Posted on:
Location Type: Remote
Location: Remote • Virginia • 🇺🇸 United States
Visit company websiteSalary
💰 $140,000 - $150,000 per year
Job Level
Senior
Tech Stack
Cyber SecurityITSMSplunk
About the role
- Drive enterprise-wide security compliance strategy and risk governance framework for GSIRT, ensuring alignment with organizational objectives while continuously evolving capabilities to address emerging threats and regulatory requirements.
- Track Policy implementation and ensure it is reflected on SOPs and practices within GSIRT to reflect not only that we do/do not meet policy requirements but also how and how often we verify.
- Serve as trusted advisor on all aspects of security compliance programs, offering expert guidance on program evolution based on industry best practices and organizational needs.
- Deliver strategic security compliance and risk management insights to executive leadership, providing actionable recommendations that accelerate risk reduction and enhance organizational security posture.
- Report regularly on the Security Compliance, Risk Management and Vulnerability Management status of the organization with recommendations as applicable to improve and speed mitigations.
- Interface with the efforts of System Administrators and Owners within CISD regarding responses to vulnerabilities, Risk Assessment results and Security Compliance findings.
- Will serve as the central coordinator for cybersecurity risk mitigations, from identification to mitigation to follow-on steps to prevent future risks (as applicable).
- Operationalization of a structured and governed formal Security Compliance and Risk Management programs for the organization based on work to date and continue to improve based on new information.
Requirements
- Either 10 years of experience in Cybersecurity, Security Compliance, Risk Management or similar IT or security field or a four-year degree in a related field with at least 6 years of application and work experience using it
- Versed in Security Compliance, Risk Management, Vulnerability Management, and IT Service Management principles and methodologies
- Certified in CISSP, Security+ or other applicable certification with experience using it outside of academia strongly desired
- Experience with IT programs and program modification or enhancements over time
- Experience working with Qualys and Splunk is a plus
- Strong Proficiency in Microsoft Office Suite required
- Excellent verbal and written communication, organizational and critical thinking skills
- Superior attention to detail
- Ability to handle sensitive information and communications with technical personnel as well as executive leadership
- Proactive, self-starter taking initiative with tasks, and following through to completion
- Ability to work on multiple tasks simultaneously, and in both independent and collaborative environments
- All candidates must be authorized to work in the USA with occasional travel.
Benefits
- Comprehensive medical, prescription drug, dental, and vision coverage with coverage for spouses/domestic partners and child dependents, including access to a Health Savings Account (HSA) and Flexible Spending Account (FSA)
- Employee assistance plan and comprehensive behavioral health benefits
- Fertility benefits, including surrogacy, and adoption assistance programs
- Basic and supplemental life insurance for employees as well as supplemental life insurance coverage for their spouses/domestic partners and children
- Voluntary benefits such as group legal, identity theft protection, accident, and hospital indemnity insurance
- Short-term & long-term disability plans
- Paid parental and caregiver leave
- 401(k) Plan with pre-tax, Roth, and after-tax options and company match with immediate vesting
- Education assistance and student loan programs
- Flexible Work Arrangements, including remote and hybrid work schedules
- Time off to include vacation, paid holidays, sick leave, Summer Fridays (early release), and a winter break between Christmas and New Year’s Day (based on business needs)
- Referral bonuses (subject to eligibility)
- Matching gift program
- A wide variety of employee business resource groups (EBRGs)
- Special discounts on Sony products, offered exclusively to Sony employees
- Employee stock purchase plan (Sony covers commissions and fees for your Sony stock purchases made through after-tax payroll deductions)
- Annual incentive bonus
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
CybersecuritySecurity ComplianceRisk ManagementVulnerability ManagementIT Service ManagementProgram ModificationQualysSplunkMicrosoft Office SuiteCritical Thinking
Soft skills
Verbal CommunicationWritten CommunicationOrganizational SkillsAttention to DetailProactiveSelf-starterInitiativeAbility to Handle Sensitive InformationAbility to Work IndependentlyAbility to Work Collaboratively
Certifications
CISSPSecurity+
