Remote Technical Compliance Manager

Summary

Join Solo.io as an Infosec and Compliance Engineer to play a pivotal role in securing infrastructure, data, and software. This hands-on role involves defining and managing corporate security strategy, implementing compliance mechanisms, and working with departments to establish security standards and processes.

Requirements

• 3+ years of InfoSec and security compliance expertise with successful track record of obtaining SOC2 and ISO-27001 compliance
• 2+ years of SOC analyst or security compliance management experience in a cloud native environment
• 2+ years of Customer Service or other customer facing experience
• 2+ Years of Prior SW development or DevOps experience
• 2+ years of SaaS and Cloud technical hands on experience
• 2+ years working with agile methodologies

Responsibilities

• Lead Audits & Security Compliance
• Respond to security questionnaires from our customers to help us grow our business and articulate Solo’s security compliance approach
• Act as liaison between us and our customers
• Perform quantitative Risk Assessments to help internal teams understand where to make smart investments in cybersecurity
• Author security policy documents to build up our security and cybersecurity programs
• Assist with evidence collection to help us prepare for external compliance audits utilizing our compliance automation tool Vanta
• Provide advice and guidance on a wide range of cybersecurity topics
• Project manage security deliverables to keep us on track
• Contribute to service development programs to improve our deliverables
• Help define and build security strategy company wide and for each department
• Work with all internal departments to establish security standards and processes to comply with corporate security strategy
• Provide expert guidance to departments and teams on ongoing security compliance requirements
• Provide training as needed to practice how they will respond to a cybersecurity incident
• Help establish and maintain Compliance Management
• Help establish security compliance plan company wide, including but not limited to SOC2 and ISO27001 compliance
• Work with auditors to provide compliance evidence as needed, while working with departments to establish said processes in order to comply

Preferred Qualifications

• Highly desirable: 2+ years of Kubernetes hands on experience
• A passion about solving clients’ security challenges
• Well-developed technical writing skills