Apply now

Apply for Job

Information Security Compliance

Date:  Jul 26, 2022
Location: 

US - Massachusetts, Newton

Job Category:  IT
Department:  IT

Information Security Compliance 


Who we are:

CyberArk (NASDAQ: CYBR) is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on TwitterLinkedIn or Facebook.
 

What you will do:

We’re looking for an experienced and passionate Information Security compliance expert, to help drive organization wide security compliance and risks processes such as Risk Assessment, Mitigation Planning, Compliance with security standards, Audit preparation, execution, and Customer Security operations.

 

What you need to succeed:

 

  • Planning, performing, and tracking cyber security gap analysis and risk assessment processes
  • Performing internal & external, hands-on technical and procedural security audits
  • Develop, implement and track technical risk control/mitigation plans
  • Working with IT Business applications, infrastructure and service group to monitor and implement security controls, solutions and software qualifications and compliance
  • Manage information security related tasks, track progress and report to management
  • Plan and execute Security processes and InfoSec group controls
  • Write and implement security related procedures
  • Lead audit and compliance activities as SOX, SOC2, ISO27001, FedRamp and more
  • Responsible to handle Internal and third-party security qualification processes
  • Responsible on customers RFP and risk assessment questionnaire; in a business-driven approach and a prompt response time

 

How you will stand out from the crowd:

  • 3+ years of experience in security Governance, Risk and Compliance in the hi-tech domain
  • Proven experience with security compliance audit and management (ISO, SOC2, SOX, FedRamp)
  • Hands-on experience with ISMS according to audits, Security Risk Management,       and mitigation planning
  • Experience in working with customers and 3rd party qualifications
  • Experience in cloud security compliance and risks
  • Experience in a high tech, global company
  • Background and experience in infrastructure and Application security (R&D an advantage)
  • Familiar with security vulnerabilities, trends, tools and practices.
  • Professional certifications as Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) or Certified Information Security Professional (CISSP) – an advantage
  • Ability to multi-task in a dynamic work environment
  • Ability to motivate others in a matrix management structure
  • A true team player and easy to collaborate with
  • A true proactive and “can do” approach
  • High level English with an emphasis on writing skills
  • Hybrid Work (2 days remote, 3 in Newton office)
  • May need to travel 1-2 a year

 

CyberArk is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

 

CyberArk may, if required by applicable law, implement a mandatory vaccination policy as a condition of employment, subject to reasonable accommodation where required by law.

 

#LI-SZ1


Nearest Major Market: Boston

Apply now

Apply for Job