La Description
Blueprint RF is searching for an Security Compliance Sr Analyst who will report to the Senior Director of Operations. This individual will contribute to the compliance and governance activities related to multiple frameworks and requirements including SOC 2, ISO 27001, PCI-DSS, and more. This individual will assist with security controls implementation and maintenance and help evolve the compliance and cybersecurity program to be more effective and efficient to enable scalability. This individual must exhibit accountability for the compliance projects and tasks assigned to them while continuing to drive actions across multiple teams. The right candidate for this role has a technical background and can apply their knowledge to information security and business operations.
Responsibilities:
- Function as the compliance liaison between business, engineering, and sales
- Collaborate with cross functional teams to validate Blueprint RF is effectively implementing and maintaining relevant security controls, understand their operations, and ensure compliance with corporate standards.
- Monitor and enhance the controls necessary to achieve and maintain SOC 2, ISO 27001, and other compliance requirements. Routinely test controls as required.
- Manage multiple compliance programs including SOC 2 and the Information Security Management System based on ISO/IEC 27001:2022 requirements.
- Effectively communicate compliance status, timelines, risk, remediation efforts to leadership.
- Maintain procedures, documentation and records necessary to comply with compliance initiatives.
- Develop, revise, and maintain remediation plans in coordination with the remediation owners. Track the remediation plans to closure.
- Maintain tools and processes that enable governance of compliance.
Minimum:
- Bachelor’s degree in a related discipline and 4 years’ experience in a related field (i.e. information security controls, information technology audit, or security risk management.) The right candidate could also have a different combination, such as a master's degree and 2 years’ experience; a Ph.D. and 1 year experience in a related field; or 8 years’ experience in a related field
- Demonstrated experience with at least 2 of the following: ISO 27001, SOC 2, PCI DSS, or NIST 800-53.
- At least one relevant industry certification, for example: CISSP, CISA, CISM, CRISC.
- Ability to work independently under minimal supervision with a team-player mentality to achieve desired business results.
- Strong attention to detail, well organized, and able to manage time effectively.
Preferred:
- Understanding of security engineering principles.
- Professional services audit or consulting background a plus.
Compensation:
Compensation includes a base salary of $88,300.00 - $147,100.00. The base salary may vary within the anticipated base pay range based on factors such as the ultimate location of the position and the selected candidate’s knowledge, skills, and abilities. Position may be eligible for additional compensation that may include an incentive program.
Benefits:
The Company offers eligible employees the flexibility to take as much vacation with pay as they deem consistent with their duties, the company’s needs, and its obligations; seven paid holidays throughout the calendar year; and up to 160 hours of paid wellness annually for their own wellness or that of family members. Employees are also eligible for additional paid time off in the form of bereavement leave, time off to vote, jury duty leave, volunteer time off, military leave, parental leave, and COVID-19 vaccination leave.
About Cox Communications
Cox Communications is committed to creating meaningful moments of human connection through broadband applications and services. The largest private telecom company in America, we proudly serve six million homes and businesses across 18 states. We're dedicated to empowering others to build a better future and celebrate diverse products, people, suppliers, communities and the characteristics that makes each one unique.
About Cox
We are the Cox family of businesses. We’ve been making our mark since 1898 by building and evolving world-class businesses, staying true to our values, and encouraging top talent to always look for growth and impact while building a career with us. Our primary divisions – Cox Communications and Cox Automotive – are driving a new wave of innovation, powering smart cities with powerhouse broadband communications and pioneering greener, more progressive transportation alternatives for individuals and fleet operators. We’re also expanding into new spaces like cleantech and healthcare to rev up our momentum toward building a better future for the next generation. We’re looking for the talent today who will be our leaders tomorrow. Sound intriguing? Learn more about where we are today, where we hope you’ll be going with us, and the common purpose that unites us at coxenterprises.com.
Benefits of working at Cox may include health care insurance (medical, dental, vision), retirement planning (401(k)), and paid days off (sick leave, parental leave, flexible vacation/wellness days, and/or PTO). For more details on what benefits you may be offered, visit our benefits page.
Cox is an Equal Employment Opportunity employer - All qualified applicants/employees will receive consideration for employment without regard to that individual’s age, race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender, gender identity, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
Statement to ALL Third-Party Agencies and Similar Organizations: Cox accepts resumes only from agencies with which we formally engage their services. Please do not forward resumes to our applicant tracking system, Cox employees, Cox hiring manager, or send to any Cox facility. Cox is not responsible for any fees or charges associated with unsolicited resumes.