Governance Compliance Specialist

Authentic8
6d$70,000 - $80,000
Match Resume

About The Position

At some point in any digital investigation, an analyst needs to step beyond the perimeter and engage threats at the source. Authentic8 Silo places any type of digital analyst in region-specific, multi-application workspaces, securely and anonymously, anywhere across the globe. Target content can be captured, analyzed, and transformed in order to derive intelligence and support investigation requirements. All delivered in a cloud-native, multi-tenant platform. Compliance officers, mission managers, and administrators have their own specific audit and oversight requirements; to meet these needs, Silo also ensures compliance and appropriate use through class-leading policy enforcement and audit logging. Silo transforms how more than 750 of the world's most sophisticated organizations, from domestic and foreign government agencies to commercial entities across all sectors conduct their digital investigations. Authentic8 is seeking a highly skilled and motivated Governance Compliance Specialist (GCS) to facilitate its robust security program objectives and lead all activities related to periodic documentation and compliance auditing. Working under the supervision of the Governance Risk & Compliance Manager, the GCS will play a critical role in ensuring continuous adherence to established security standards and frameworks. This position requires a professional with a background in security, a natural disposition for managing complex projects with numerous deliverables, and the acumen to maintain effective relationships across a multidisciplinary team. The ideal candidate will be a hands-on contributor who is passionate about embedding security best practices into the company culture to support our mission of providing a secure cloud-based service to cutting-edge public and private organizations.

Requirements

  • Four or more years of professional experience in Information Technology, with at least two years in Information Assurance, Information Security, or Risk Management.
  • Bachelor's degree in a related field (e.g., computer science, information systems, cybersecurity) or a commensurate number of years of professional experience.
  • Proven success in leading complex projects and activities among a multidisciplinary team.
  • Demonstrated familiarity with NIST 800-53 and FedRAMP frameworks.

Nice To Haves

  • Professional credentials demonstrating a strong understanding of security fundamentals (e.g., ISC2, CompTIA, ISACA, GIAC).
  • Experience working with cloud-based services, such as SaaS or PaaS.
  • Experience in project or program management.
  • Familiarity with compliance frameworks including NIST 800-53, HIPAA, GDPR, and PCI DSS.

Responsibilities

  • Manage the Information Assurance Control Calendar by completing assigned compliance activities (e.g., access reviews) and coordinating with stakeholders to ensure periodic tasks (e.g., contingency and incident response plan testing) are completed on schedule.
  • Ensure company policies, plans, procedures, and standards are reviewed and updated regularly for accuracy and compliance.
  • Maintain and manage the Plan of Action & Milestones (POA&M) for FedRAMP, CMMC, and internal findings to ensure timely resolution of security gaps.
  • Lead and facilitate monthly FedRAMP meetings, providing authorizing officials with briefings on all deliverables and program status.
  • Lead and oversee the company’s supply chain risk management program, conducting risk assessments for all new and existing vendors, suppliers, and services.
  • Lead the CVE (Common Vulnerabilities and Exposures) meeting, providing detailed explanations of vulnerabilities, their impact, and recommended remediation steps to relevant stakeholders.
  • Assist the Governance Risk & Compliance Manager in preparing for external assessments (e.g., FedRAMP audits, SOC 2 attestations) by maintaining audit-ready documentation, collecting evidence, and coordinating with stakeholders during the process.
  • Ensure all personnel complete mandatory training during onboarding and on a periodic basis as required, and collaborate with relevant teams to develop and update training materials yearly based on evolving security protocols and company requirements.
  • Support current and potential customers by providing detailed and timely responses to Requests for Information (RFI).
  • Ensure continuous adherence to established regulatory frameworks, including FedRAMP, ISO 27001, CMMC, SOC 2, HIPAA, GDPR, and PCI DSS.

Benefits

  • medical
  • dental
  • vision
  • flexible PTO
  • a 401k program
  • stock options

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Mid Level

Job Search Resources

Similar Governance Compliance Specialist job opportunities

Specialist, Governance, Risk & Compliance
McDonald's Corporation
McDonald's Corporation • Chicago, IL13d • $84,051 - $105,064
Specialist, Governance, Risk & Compliance
McDonald's Corporation
McDonald's Corporation • Chicago, IL10d • $84,051 - $105,064
Senior Governance, Risk & Compliance Specialist
Slice
Slice9d
Compliance Innovation Governance Support
Royal Bank of Canada
Royal Bank of Canada • Los Angeles, CA9d • $99,000 - $176,000
Technology Governance & Compliance Director
McKesson
McKesson • Irving, TX8d
Director, Governance, Risk & Compliance
MQ Referrals Only
MQ Referrals Only7d • Remote
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service