Experienced IT Security Engineer, Governance Risks and Compliance – Information Security Governance and Risk Management Specialist

Introduction to workwarp and the Role

workwarp is a leading organization dedicated to providing innovative solutions and exceptional services to its customers. As part of our commitment to excellence, we are actively recruiting for the role of IT Security Engineer, Governance Risks And Compliance. This is a unique opportunity for a highly skilled and motivated individual to join our team and contribute to the development and implementation of our information security governance and risk management strategies.

As an IT Security Engineer, Governance Risks and Compliance, you will play a critical role in ensuring the security and integrity of our information systems and data. You will be responsible for developing and maintaining our information security policies, standards, and procedures, as well as identifying and mitigating risks to our organization. This is a people-focused position that requires excellent communication and interpersonal skills, as well as the ability to work effectively with stakeholders at all levels of the organization.

Key Responsibilities

In this role, you will be responsible for a range of key activities, including:

• Providing policy and standards subject matter leadership through the development and maintenance of our information security policies, standards, and procedures.
• Improving our security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
• Managing human risk and developing a strong security-driven culture where security is part of every employee's day-to-day operation and attitudes.
• Analyzing and identifying the top human risks to the organization and the behaviors that must change to mitigate those risks.
• Developing Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for a metrics dashboard to track and report operational capabilities, success factors, risks, threats, and compliance metrics.
• Ensuring up-to-date process and procedure documentation for the team.
• Identifying process improvement/automation opportunities and innovating new ways of doing things.
• Communicating, and delivering, the value of Information Security throughout all of our organization.
• Working as a member of the broader GRC, IT, and workwarp teams.

Essential Qualifications

To be successful in this role, you will need to possess the following essential qualifications:

• Exceptional communications skills and the ability to tell powerful and compelling stories through excellent writing skills.
• Demonstrated customer focus – evaluates decisions through the eyes of the customer; builds strong customer relationships and creates processes with customer viewpoint.
• Ability to create metrics, documentation, presentations, and procedures that communicate results effectively.
• Organized and detail-oriented, able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently.
• Must have a high degree of initiative and the ability to manage multiple tasks, work under pressure, and meet deadlines as required.
• Strong interpersonal, problem-solving, prioritization, presentation, and facilitation skills with the ability to make recommendations to all levels of the organization.
• Demonstrated ability to work independently and with others.
• Experience with creating and writing security policies or standards in support of organizational security programs or system accreditations.
• Ability to interact confidently with various levels of technical and leadership positions.
• Proven experience (3+ years) in governance, risk, or compliance roles in one or more of the following frameworks: PCI-DSS, SOX, NIST 800-171, NIST 800-53, CIS.
• Consistently prioritizes safety and security of self, others, and personal data.
• Embraces diverse people, thinking, and styles.
• Possesses a high school diploma, GED, or high school equivalency.
• Is at least 18 years of age and has authorization to work in the United States.

Preferred Qualifications

In addition to the essential qualifications, the following preferred qualifications will give you a competitive edge:

• Bachelor's degree or higher in a relevant field (information systems, cybersecurity, communications, behavioral science, and/or computer science).
• Experience across Information Security and IT domains such as Governance, Risk, and Compliance, IT operations, incident response, identity and access management, penetration testing, vulnerability scanning, e-discovery & forensics, application development, infrastructure, or technical support.
• Exposure to and familiarity with relevant standards such as ISO/IEC 27001 and 27002, NIST 800, and COBIT, and applicable laws related to information security and privacy (e.g., GDPR, PCI-DSS, SOX, HIPAA).
• Experience in developing executive presentations or status communications for multiple organization roles.
• A history of driving transformational change and building relationships across IT and the Business.
• Creative and visual skills including graphic, web, print, and slide design.
• Working knowledge of scripting languages (e.g., Python, PowerShell) for automating tasks.
• Excellent analytical and problem-solving skills.
• Meticulous attention to detail and accuracy.
• CISSP, CISA, CISM, Security+ or other relevant security certifications.
• Experience with RSA Archer or equivalent GRC tool.

Career Growth Opportunities and Learning Benefits

At workwarp, we are committed to the growth and development of our employees. As an IT Security Engineer, Governance Risks and Compliance, you will have access to a range of career growth opportunities and learning benefits, including:

• Comprehensive training and development programs to help you build your skills and knowledge.
• Opportunities to work on complex and challenging projects that will help you develop your expertise.
• A supportive and collaborative work environment that encourages innovation and creativity.
• Regular feedback and coaching to help you achieve your career goals.
• Access to industry-leading conferences and training events.

Work Environment and Company Culture

At workwarp, we pride ourselves on our positive and inclusive company culture. We believe in creating a work environment that is supportive, collaborative, and fun. As an IT Security Engineer, Governance Risks and Compliance, you will be part of a dynamic and talented team that is passionate about delivering exceptional results. Our company culture is built on the following values:

• Care: We care about our customers, our employees, and our community.
• Integrity: We act with integrity and transparency in everything we do.
• Resilience: We are resilient and adaptable in the face of change and challenge.
• Servant Leadership: We lead with a servant mindset, prioritizing the needs of others and empowering our teams to succeed.

Compensation, Perks, and Benefits

We offer a competitive salary and benefits package that includes:

• Competitive salary and performance incentives.
• 401(k) with generous company contributions.
• Comprehensive health benefits, including medical, dental, vision, short/long term disability, and life insurance.
• Paid vacation and personal time off.
• Paid holidays and parental leave.
• Domestic and International space-available flight privileges.
• Career development programs and training opportunities.
• Access to over 500 discounts, specialty savings, and voluntary benefits.

Conclusion

If you are a motivated and experienced IT security professional looking for a new challenge, we encourage you to apply for the role of IT Security Engineer, Governance Risks and Compliance. This is a unique opportunity to join a dynamic and talented team and contribute to the development and implementation of our information security governance and risk management strategies. With a competitive salary and benefits package, comprehensive training and development programs, and a supportive and collaborative work environment, this is an opportunity not to be missed.

Apply today and take the first step towards a rewarding and challenging career with workwarp.