Security Compliance Specialist

Qubole   •  

Santa Clara, CA

Industry: Technology

  •  

Less than 5 years

Posted 172 days ago

This job is no longer available.

What you'll be doing

    • Be a policy wrangler. This will include researching, and updatingsecurity policies that comply with various compliance objectives such as AICPA (SOC2), ISO, HIPAA, etc...
    • Stay abreast of upcoming compliance changes that may impact Qubole and be an advocate for changes that align with the interests of Qubole and our broad set of customers
    • Work with our engineering and product teams to advance compliance in all things we do, as a company we are all committed to doing the very best for our customers and policy and compliance is where all that commitment starts
    • Help Qubole employees understand the importance of compliance and why we do the things we do
    • Help ensure our compliance with various policies and control objectives and be able to spot check and find deviations that need improvement
    • Has experience working in a cloudy environment where assets such as systems and applications grow and compare as needed and where system assets/inventories may only be active for as little as one hour or one day

Required experiences and skills

    • Experience with one or more other policy frameworks and regulations such as COBIT, ISO, PCI, HIPAA, FISMA/NIST
    • The successful individual will have experienceworking with other compliance individuals and teams, customers and auditors to communicate our relevant plans, policies, and controls as well as our adherence to what we say we do
    • Willing to answer compliance and governance questionnaires and identifying ways to minimize the security phase of the sales cycle. This is done by identifying proactive steps we can make to provide trust and confidence to our prospects and customers
    • Ability to build relationships both internally and externally to achieve the right business results in a security-conscious way
    • Experiencing executing processes and controls to meet or address securityrisk and compliance requirements
    • Is capable of documenting and describing workflows and processes that can be followed in a fast-paced environment and which exceeds the requirements set forth in audits and necessary compliance regimes we follow
    • Is a good communicator and writer, adept at working withauditors/regulators, technical personnel (like engineers), business teams to make complex concepts clear and understandable by different audiences

Having these will set you apart as a candidate

  • 3 - 5 years of experience and a hunger for learning more and growing
  • Experience with security practices around AWS, and other IaaS based platforms
  • Certifications nice to have -- CISA, CRISC, CISSP
  • Is capable of thinking out of the box and has a solid grounding in creating great and secure experiences
  • Has or will be willing to learn/obtain a deep knowledge of the Qubole and Big Data products and services