Senior Security and Compliance Engineer
Security |
Primary Responsibilities
- Define Security Policies, Guidelines, Processes and Procedures.
- Raise awareness of Flo's internal security policies and practices while implementing a regular cadence of training.
- Prepare regulatory documents and submit them to our regulatory agency to monitor Compliance issues.
- Perform third-party vendor due diligence as part of the company's process for using new and existing vendors.
- Auditing existing IT infrastructure, identifying inefficiencies, redundancies and superfluous controls.
- Streamlining reporting and auditing processes, increasing productivity and reducing costs.
- Managing security risks effectively and responding quickly in the event of a breach.
Required Skills & Abilities
- 3+ years of experience within Information Security and Compliance
- Background in relevant information security governance, technical and security standards, and regulations. (i.e. ISO/IEC 27000 series, NIST Cybersecurity framework, SOX, COBIT).
- Practical experience in the implementation of core privacy standards and regulations (GDPR, COPPA, HIPAA and others)
- English (B2+)
- Excellent written and verbal communication skills
- Ability to build solid relationships with surrounding teams
Preferred skills
- Applicable Engineering degree
- Industry certifications FIP, CIPP/E, CIPM, CIPT
What we offer:
-
A chance to improve lives of millions of women worldwide
-
Ability to contribute to a world-class product with a large user base
-
Professional development opportunities in a highly skilled and motivated team
-
Competitive salary
-
Strong management with a proven track record of successful projects, including MSQRD, AIMatter, Maps.me