Remote Security and Compliance Manager

Description

CIQ OVERVIEW

CIQ believes in helping people do great things by providing world-class software infrastructure for others to build value on top of. This includes working closely with open-source communities, securing the software infrastructure, and driving performance throughout the entire stack. We love our customers who are doing things like running a traditional IT infrastructure to building the future of genAI and leading major research and scientific initiatives like curing cancer.

We are looking for individuals who strive to work on teams empowered by ownership, diversity of thought, pushing the limits of what is possible and want to help others.

POSITION SUMMARY

As Security and Compliance Manager, you will work with business and engineering leaders to help address and resolve security and compliance concerns across the company. You will be responsible for improving compliance, vulnerability management, threat detection, and incident response. To do this, you will partner with department heads and engineers to lead improvements in infrastructure and application security. Additional responsibilities include but are not limited to:

• Developing best practices that ensure the security of the company’s assets, systems, and intellectual property.

• Define and lead cross-functional projects to meet security objectives, including compliance with security standards, managing risks, monitoring security measures, and maintaining business continuity (BC/DR).

• Contributing to application or infrastructure security work, including “hands-on keyboard” projects.

• Managing, monitoring, and evaluating risks, threats, and vulnerabilities.

• Researching and implementing appropriate changes and solutions.

• Collaborating with the engineering team to implement security systems and improve the security of infrastructure and code as part of the SDLC.

• Reviewing new and current technology for security-related functions.

• Submitting proposals on implementations and enhancements.

• Providing measurements of threats and risks using metrics and reporting.

Requirements

NEEDED TO SUCCEED

Successful candidates will have in-depth knowledge of risk and compliance management frameworks, regulations, and industry standards. Deep technical and software expertise, along with great business acumen and judgment. Strong analytical, problem-solving, and critical thinking skills. The ability to work independently and collaboratively in a remote team environment. A friendly, collaborative, humble, honest, resilient, and always striving to be better attitude.

EDUCATION AND EXPERIENCE

A minimum of 5 years experience as a Security Engineer or similar experience. Proven background implementing a security program in a software engineering organization. Bachelor’s degree in technology or related field or equivalent experience. At least one of the following certificates, CSSLP, CCSK, CISM, or equivalent, is strongly preferred. Experience in cloud environments and container technologies.