
Senior Engineer, Governance, Risk & Compliance – TPRM
Posted 2 days ago

Posted 2 days ago
This is a fully remote position, open to applicants in United States.
• Create solutions by utilizing various tools and technologies.
• Serve as the system administrator for specific security or Governance, Risk, and Compliance (GRC) tools.
• Collaborate with security vendors during design sessions and assist in configuring GRC solutions for effective use.
• Partner with IT teams in Application Security, Security Engineering and Operations, Enterprise Applications, Desktop Support, Help Desk, Networking, and Infrastructure Operations to gather necessary data and information to support GRC initiatives.
• Remain updated on threat intelligence and provide recommendations for enhancements.
• Engage in security incidents as required.
• Assist with security assessment requests for clients such as HITRUST, SOC 2, etc., by retrieving relevant data as necessary.
• Bachelor's Degree in Computer Science or a related field, or an advanced degree.
• 4-6 years of pertinent experience or an advanced degree.
• Experience in security engineering, including the implementation of information security or cybersecurity solutions.
• Familiarity with security technologies, tools, or processes such as phishing campaigns, vulnerability scans, Incident Response Plans (IRPs), playbooks, Identity and Access Management (IAM), Privileged Access Management (PAM), Multi-Factor Authentication (MFA), Role-Based Access Control (RBAC), Single Sign-On (SSO), Data Loss Prevention (DLP), Intrusion Detection Systems/Intrusion Prevention Systems (IDS/IPS), Extended Detection and Response (XDR), Mobile Device Management (MDM), Security Information and Event Management (SIEM), and threat hunting.
• Experience with one or more frameworks such as COSO, NIST Cybersecurity Framework (CSF), Risk Management Framework (RMF), ISO, or COBIT.
• Background in environments governed by regulations such as the Health Insurance Portability and Accountability Act (HIPAA), Sarbanes-Oxley Act (SOX), Security Operations Center (SOC), Payment Card Industry (PCI), or GRC.
• Experience collaborating with IT partners and sufficient exposure to areas including Secure Software Development Life Cycle (SSDLC), software engineering, infrastructure, networking, service desk, desktop support, and security operations.
• Health insurance.
• Opportunities for professional development.
MANIKO Nails GmbH
Servbank
Get handpicked remote jobs straight to your inbox weekly.