Sr. Security Compliance Analyst

About The Position

Requirements

• Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or a related field.
• 5+ years of experience in security governance, risk management, or compliance in a global technology or networking company.
• Proven track record in developing and implementing security governance frameworks for enterprise security.
• Experience managing compliance with industry standards and regulations (ISO 27001, NIST CSF, SOC 2, GDPR, CCPA, etc.).
• Hands-on experience with supply chain security, third-party risk management, and vendor security assessments.
• Deep understanding of security frameworks (ISO 27001, NIST, CIS, SOC 2) and regulatory requirements.
• Strong expertise in risk management methodologies, security policy development, and compliance auditing.
• Proficient in conducting security assessments, third-party risk evaluations, and internal security reviews.
• Ability to communicate complex security concepts to business and technical stakeholders effectively.
• Strong leadership skills with experience in cross-functional collaboration and executive reporting.

Responsibilities

• Security Governance & Policy Development Develop, implement, and maintain security policies, standards, and guidelines aligned with industry best practices (e.g., NIST, ISO 27001, CIS).
• Establish and lead a security governance framework to ensure consistent application of security controls across the enterprise.
• Risk Management & Compliance Identify, assess, and mitigate security risks across TP-Link’s global operations.
• Ensure compliance with regulatory requirements such as GDPR, CCPA, NIST CSF, and other applicable cybersecurity frameworks.
• Oversee security audits, risk assessments, and third-party security evaluations.
• Partner with legal, IT, and business leaders to address security compliance gaps.
• Third-Party & Supply Chain Security Develop and enforce security requirements for vendors, suppliers, and third-party partners.
• Conduct security assessments of supply chain partners to identify and mitigate potential risks.
• Security Awareness & Training Develop and lead security awareness programs to educate employees on cybersecurity risks and best practices.
• Foster a security-first culture across all levels of the organization.
• Provide guidance and training on security governance processes for internal stakeholders.
• Incident Response & Continuous Improvement Support security incident response efforts by ensuring governance processes facilitate rapid detection and response.
• Lead post-incident analysis to refine security policies and controls.
• Monitor emerging threats, regulatory changes, and industry trends to evolve TP-Link’s security governance strategies.

Benefits

• Salary range: $100,000-$150,000
• Free snacks and drinks, and provided lunch on Fridays
• Fully paid medical, dental, and vision insurance (partial coverage for dependents)
• Contributions to 401k funds
• Bi-annual reviews, and annual pay increases
• Health and wellness benefits, including free gym membership
• Quarterly team-building events