IT Governance, Risk, & Compliance Specialist

Description

Company Overview iboss is a cloud security company that enables the modern workforce to connect securely and directly to all applications from wherever they work.

Built on a containerized cloud architecture, iboss delivers security capabilities such as SWG, malware defense, RBI, CASB and data loss prevention to all connections via the cloud, instantaneously and at scale.

This eliminates the need for traditional network security appliances, such as VPNs, firewalls and web gateway proxies, which are ineffective at protecting a cloud-first and mobile world.

Leveraging a purpose-built cloud architecture backed by 230+ issued and pending patents and more than 100 points of presence globally, iboss processes over 150 billion transactions daily, blocking 4 billion threats per day.

More than 4,000 global enterprises trust the iboss Cloud Platform to support their modern workforces, including a large number of Fortune 50 companies.

To learn more, visit / At iboss, we believe that exceptional employees are the key to our success. Our teams are hands on, diverse, nimble, and highly empowered to drive excellence.

Be a part of the team that will transform the way cybersecurity is delivered! Job Description The IT Governance, Risk, and Compliance Specialist will play a key role on the iboss team by aligning security initiatives with enterprise programs and business objectives.

In this role, you will be a part of the team responsible for information security assessments of cloud environments, information systems, risk management and security tool configurations to ensure adherence to applicable frameworks, laws, and regulations.

The IT GRC Specialist will make an impact on iboss’ security program and services through experience with various areas including data governance, risk management, metrics, audit, policy, and standards development. Responsibilities

• Develop and oversee IT compliance and IT Risk strategies, ensuring alignment with regulatory requirements and industry standards
• Lead the implementation and maintenance of IT governance frameworks, risk, policies, and procedures
• Design and enforce IT controls to mitigate risks and ensure data security and regulatory compliance
• Facilitate and support the gathering, reviewing, assembling, and maintaining of internal and external audit evidence and related documentation
• Conduct thorough risk assessments and provide strategic recommendations for risk management
• Act as liaison / main of contract with internal and external auditors for regulatory inquiries and compliance related matters.
• Collaborate with cross-functional teams to integrate compliance requirements
• Monitor and review regulatory updates and issues relative to pertinent security regulatory requirements.
• Drive continuous improvement efforts to enhance IT compliance and governance practices.

Skills / Qualifications

• Bachelor's degree in Computer Science, Information Security, or related field
• 5+ years of experience in IT compliance, governance, or related roles
• Working experience with Business continuity plans (BCPs)
• Expert knowledge on industry specific regulatory requirements and compliance frameworks for cloud providers (FedRAMP / DoD, SOC, ISO, HIPAA, PCI-DSS)
• Deep understanding of IT governance frameworks and risk management methodologies
• Prior experience with cloud providers and / or data centers a plus
• CISA required and other industry certifications such as CISSP, CISM, or equivalent a plus
• High level of verbal and written communication skills

Benefits :

• Health, Vision, Dental - open to domestic partners
• 401K with company match
• Paid Time Off (PTO)
• Company paid holidays
27 days ago