Cybersecurity Compliance Lead Remote FS437

At Fresche Solutions we offer great work-life balance with flexible hours. You can work anywhere in United States either from your home or in one of our offices the decision is up to you.

WHY JOIN FRESCHEWe believe in leading our industry we believe in innovation we believe in delighting our customers guaranteeing their success and ensuring that 100% of our customers are referenceable.

Our distinct company culture makes us a top employer as well a premiere choice for our customers for the last eleven (11) consecutive years. We work hard to ensure that our values permeate the company and are reflected in everything we do. Whether it be in setting priorities defining ideas or carrying out processes we are committed to ensuring that our values are manifested at all levels of our organization.

Role Summary

The Cybersecurity Compliance Lead serves as the senior security and compliance professional responsible for leading the organizations cybersecurity compliance program and driving strategic initiatives to mature the overall security posture. This role combines hands-on cybersecurity administration with program leadership and team-building responsibilities transitioning from primary execution of security and compliance tasks to broader strategic oversight. The position is also responsible for scaling security and compliance functions across the company developing and mentoring the cybersecurity team coordinating cross-functional initiatives and positioning the organization for sustainable future growth through scalable processes and a strong security culture.

In your day-to-day you will be responsible for

• Lead the cybersecurity compliance program combining hands-on operations with program leadership responsibilities
  
• Develop and mentor cybersecurity team members including direct supervision goal-setting and professional development of junior analysts
  
• Lead development and execution of cybersecurity compliance strategies and solutions
  
• Drive organizational security program maturity through metrics development and process improvement
  
• Maintain compliance frameworks and attestations including NIST CSF ISO 27001 and SOC 2 Type II
  
• Provide strategic guidance to vulnerability management programs and security initiatives
• Conduct and oversee audits and assessments of systems policies and practices
  
• Develop and implement solutions to improve security compliance posture and performance
  
• Lead internal and external audit processes for cloud division operations
  
• Manage BIA BCDR/IR planning testing and vendor risk management programs
  
• Serve as primary liaison with management auditors clients and business partners
  
• Present compliance status and strategic recommendations to executive leadership
  
• Coordinate cross-functional teams to support security initiatives
  
• Manage client assurance programs and security questionnaire responses
  
• Research and maintain expertise in evolving security laws regulations and best practices
  
• Advise on security awareness training program on security compliance requirements
  
• Provide guidance on compliance decisions and risk acceptance recommendations
  
• Develop and maintain risk management strategy policies and procedures
  
• Ensure alignment between security compliance activities and enterprise risk management
  
• Continuously introduce positive changes and promote adoption of best practices to enhance security program effectiveness
  
• Foster a culture of security awareness and compliance throughout the organization

What you must have

• Bachelors degree in Computer Science Information Systems Cybersecurity or a related field
• Professional certification in security or compliance domains such as CISSP CISA CISM or CRISC
• 3 years of experience in security or compliance roles preferably in a similar industry or sector
• Experience in auditing Managed Service Providers (MSPs) and multi-tenant environments is essential
• Experience differentiating between in scope and out of scope and a line of demarcation between corporate networks service networks and customer cloud network typically in an MSP context
• Experience managing audit when only part of the corporate network and Active Directory are in scope
• Ideal candidate will have technical experience with networks Active Directory perimeter security systems storage backup disaster recovery and virtual private networking
• Proficient in security and compliance frameworks and standards such as NIST 800-53 ISO 27001 PCI DSS SOC 2 or HIPAA
• Self-motivated with the ability to adapt to change
• Excellent communication writing and presentation skills
• Ability to communicate effectively with different audiences and levels of authority
  
• Interpersonal skills to influence and spur change
  
• Strong analytical problem-solving and decision-making skills
  
• Ability to manage client expectations
• Excellent planning and organization skills
• Ability to work independently and collaboratively in a fast-paced and dynamic environment
• Energetic professional enthusiastic and positive attitude
• Strong work ethic high integrity and commitment to success
• Hiring leading and mentoring
• Contribute to interview and hiring process as needed
• Lead by example and have a strong ability to inspire and motivate people to success
• Collaborate with other teams and lead initiatives to successful outcomes
• Foster a spirit of teamwork and unity
  

Working conditions

• Travel as required

We are proud to be an equal opportunity employer and are committed to fostering a diverse and inclusive workplace. We do not discriminate on the basis of race religion color national origin gender sexual orientation age marital status veteran status or disability status.

WHATS IT LIKE TO WORK AT FRESCHE

Visit our Website and Apply Today: US ON:LinkedIn: Experience:

Senior IC