Kforce IT Security Compliance Manager in San Jose, California

Kforce has a client that is immediately adding an IT Security Compliance Manager to join their team in San Jose, California (CA).Overview:The IT Security Compliance Manager owns a Compliance Standardization project for our enterprise cloud collaboration client, which offers secure, reliable and efficient team communications, workflow and operational intelligence solutions for enterprise markets throughout the world. Teams are working to integrate new multimedia, IoT, and analytics technologies into the expanding portfolio. These efforts are all in support of our public and hybrid cloud-based Software as a Service (SaaS) solutions for their customers. Our services use cloud computing infrastructure on AWS and Azure to build at scale.As Manager of Security Compliance, you will be leading a team that is responsible for the security and compliance of our mission critical systems that are used every day by public safety and government agencies across multiple countries. You will be working on a world-class team that uses state of the art technologies and techniques. Your efforts will help to shape engineering culture and compliance standards across our software product organization.Essential Functions:

  • Leading the effort to develop and maintain rigorous cybersecurity and data privacy compliance programs within the MSI Software Enterprise

  • Working closely with MSI Legal, the MSI Data Privacy Board and other compliance experts to ensure that the organization has a proper understanding of compliance requirements for our systems

  • Work with development and operations team to ensure they are aware of the compliance standards that impact their products and services

  • Work with development and operations team to ensure they are creating the artifacts needed to show proper compliance

  • Manage the records and artifacts needed to show compliance with CJIS, GDPR, FedRamp and other compliance programs

  • BS in Computer Science, Engineering, Mathematics, or equivalent degree with a combined 7 years of experience working in IT and Cyber Security Operations, and 5 years of experience working with audit, audit preparation, or information compliance

  • Managed security engineering and/or analyst resources in a professional environment

  • Strong Familiarity with ISO 27001, FedRamp, and NIST CSF governance and risk management frameworks

  • Prefer familiarity with EU General Data Protection Regulation (GDPR) requirements

Knowledge of much of the following:

  • Familiar with AICPA SOC2 audit process and required artifacts

  • Familiarity with international compliance requirements a plus

  • Familiarity with risk and vulnerability management tools and techniques

  • Experience Managing and Prioritizing security backlogs

  • Familiarity with modern web based application architectures

  • Familiarity with cloud technologies, including AWS and Azure

  • Familiar with Identity Management, OAuth SAML, RBAC, ABAC, API Management, HIDS, NIDS and PKI

  • Familiarity with AWS Config, AWS Trusted Advisor, and CIS Benchmarks

  • Ideal candidate should have or be working towards one or more of the following Certifications: CISA, CISM, CRISC, CGEIT, CISSP; Other industry certifications will be considered

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.Compensation Type:Hours