Were seeking a technically proficient and personable security and compliance professional to lead risk management efforts and ensure adherence to SOC 2 and regulatory standards (FTC Safeguards, CCPA, NYCRR). This role requires strong communication skills to interface with employees across the organizationexplaining security needs clearly and courteously while maintaining firm, professional boundaries. Youll manage hundreds of systems, monitor controls, conduct audits and risk assessments, develop policies and training, and stay current on evolving security laws and threats. This role can pay anywhere from 30-33 hourly depending on relevant experience level.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
Bachelors Degree in Information Security, or a similar discipline.
Must have 5+ years of experience in cybersecurity SOC.
Current CISSP certification (preferred to have CISSP over a Security degree)
Must have personable skillsets to interact with end-users.
Proven experience with security technologies such as SIEM, endpoint protection, and vulnerability management tools (Experienced with Rapid 7 and SentinelOne technology platforms.)
Strong knowledge of network protocols, security architecture, encryption techniques, and secure application development.
Process regarding steps, hands-on experience with incident response, threat hunting, and penetration testing.
Excellent communication skills, both written and verbal, with the ability to explain complex security issues to non-technical stakeholders.
Knowledge of emerging cybersecurity threats, trends, and attack vectors.
Strong analytical and problem-solving skills, with the ability to take ownership and accountability, and think critically in high-pressure situations.
Experience with scripting languages (Python, PowerShell, etc.) for automation and security tool integration.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.