Your space-enabled career begins here

<p> <span style="font-weight:400;">Security Compliance Manager</span> </p> <p> <span style="font-weight:400;">Flexport Security team is growing and looking for a highly motivated security compliance specialist to join our team and drive regulatory and certification compliance requirements for our products. You will help to build and manage our security compliance program. You should be a technically experienced and innovative security, risk, compliance, and audit professional who has the ability to understand systems, security, and privacy processes, communicate to customers, and be able to drive innovative process changes through multiple organizations and teams.</span> </p> <p> <span style="font-weight:400;">Key job responsibilities</span> </p> <ul> <li style="font-weight:400;"><span style="font-weight:400;">Understand and rationalize compliance requirements for service and device security.</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Provide business-specific interpretations and support automation opportunities</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Review security controls that are technical in nature, such as access controls, data encryption in transit and at rest, and auditing and logging user activity</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Engage with the Business and SMEs to ensure compliance with information security policies</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Liaise with auditors, articulate control implementation and impact, and establish considerations for applying security, privacy, and compliance concepts to a technical cloud environment</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Maintain control libraries and compliance requirements and guidance materials for various security standards and regulations</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Experienced in reporting metrics, timelines, and effective project management skills.</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Provides input to privacy, disclosure, and confidentially guidelines.</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Assists in the implementation of processes and procedures for compliance reporting and metrics activities.</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Researches best practices and innovative approaches to enable assessment and communication of compliance risk and metrics.</span></li> </ul> <p> <span style="font-weight:400;">Preferred Qualifications</span> </p> <ul> <li style="font-weight:400;"><span style="font-weight:400;">3-5 years of experience in security or compliance consulting or advisory work in support of a highly technical environment</span></li> <li style="font-weight:400;"><span style="font-weight:400;">3-5 years of experience in performing and/or participating in technical assessments in direct support of a major compliance effort (e.g. China information security-related law and regulations, GBT, NIST, SOC1, ISO, or ISO)</span></li> <li style="font-weight:400;"><span style="font-weight:400;">3-5 years of experience designing, implementing, and/or running technical GRC solutions</span></li> <li style="font-weight:400;"><span style="font-weight:400;">Master’s degree in Information Security, Computer Science, Risk Management, Data security with 5 years of experience, or equivalent Bachelor’s degree with 5 years of experience.</span></li> <li style="font-weight:400;">Experience working directly with security engineers, auditors, and development teams</li> <li style="font-weight:400;">Excellent English is written and verbal communication skills while engaging both technical and non-technical stakeholders</li> </ul> <p></p> <p></p>