Principal Cyber Security Engineer for Identity Access Management at MSK managing identity solutions and advanced identity platforms. Partnering with stakeholders to align identity strategy and lead IAM initiatives.
About the role
- Senior Information Security Governance Analyst managing cybersecurity governance framework at Syneos Health. Collaborating with teams to strengthen organizational security through effective governance and awareness programs.
Responsibilities
- Develop, implement, and maintain a comprehensive cybersecurity governance framework to ensure compliance with industry standards and align with the organization's security and risk management objectives
- Develop, publish, and maintain cybersecurity Policies, Standards, Guidelines, and SOPs that are practical, enforceable, and aligned with leading practices
- Lead multiple cybersecurity governance initiatives concurrently, ensuring alignment with objectives, and timelines and delivering expected outcomes
- Collaborate with cross-functional teams and internal stakeholders to ensure cybersecurity policies, standards, and procedures comply with relevant local and global laws, regulations, and industry standards
- Monitor policy adherence across the organization and address non-compliance issues promptly
- Manage and collaborate to execute cybersecurity awareness campaigns to educate employees about potential threats and promote a culture of cybersecurity in the organization
- Provide guidance and support to business units on cybersecurity governance matters, including security awareness training
- Measure the effectiveness of awareness campaigns and continuously improve engagement through innovative communication strategies
- Coordinate and support internal and external cybersecurity audits and assessments, ensuring compliance with established controls and best practices, and accurate and timely responses to audit findings and recommendations
- Maintain the strategy to support customer audits and update a centralized repository of security documentation, assessments, audit reports, and standard responses to streamline customer engagements
- Develop and deliver accurate, comprehensive responses to customer RFIs, RFQs, and RFPs related to cybersecurity and data protection
- Liaise with internal and external auditors and regulatory bodies to facilitate audits and ensure successful outcomes
- Coordinate audit responses and address findings or recommendations in a timely and effective manner to improve and meet customer satisfaction
Requirements
- Bachelor’s degree in computer science, Information Security, Communication or a related field
- Relevant certifications such as PMP, CRISC, and CISA are desirable
- Minimum 5 years’ experience in cybersecurity governance , with a proven track record of successfully managing complex projects and initiatives
- Knowledge in developing and governing cybersecurity policy frameworks
- Good understanding of cybersecurity principles, practices, and technologies, with previous experience in cybersecurity governance desirable
- Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and communicate complex cybersecurity concepts to non-technical stakeholders
- Strong analytical and problem-solving skills, with the ability to assess risks and develop effective mitigation strategies
- Knowledge of cybersecurity frameworks and standards such as HIPAA, GDPR, NIST, ISO 27001, HITRUST, and FDA regulations
- Ability to work independently as well as collaboratively in a team environment, prioritize tasks, and manage time effectively
Benefits
- Health benefits to include Medical, Dental and Vision
- Company match 401k
- Eligibility to participate in Employee Stock Purchase Plan
- Eligibility to earn commissions/bonus based on company and individual performance
- Flexible paid time off (PTO) and sick time
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Join The Missing Link as a Security Engineer, leveraging 3 - 4 years of IT Security experience. Lead projects in a collaborative environment with a focus on innovation and impact.
Engineer in Health, Safety and Environment for ArianeGroup focusing on industrial risk management. Involves audits, assessments, and safety training participation.
Senior Product Security Engineer at Red Hat focusing on security and compliance for digital sovereign products while collaborating across global teams and enhancing automation.
Security Engineer safeguarding K - 12 student data in several locations for EduTech startup. Designing secure software systems and ensuring data protection to comply with privacy standards.
Security Engineer focusing on data protection and privacy for Kira Learning's educational technology. Safeguarding K - 12 student data while collaborating with engineering teams on secure software development.
Senior Cybersecurity Engineer responsible for protecting Advansys and its clients' IT infrastructure. Designing, implementing, and managing security solutions, while mentoring junior engineers.
Security Engineer responsible for incident response and security protocol design at Sinch. Joining a global team to safeguard sensitive information and enhance cybersecurity measures.
Content Developer creating engaging and effective learning materials for coding education online. Collaborating with a team to develop tailored resources for K - 12 learners in Egypt.
Campus Security Officer ensuring safety at Bright Horizons early childcare centers in Seattle. Responsible for access control, surveillance, and emergency response.