Full-Time Senior Analyst GRC - ISSO / Federal Compliance

HireVue is seeking a passionate InfoSec professional to lead HireVue's compliance program for federal and public sector clients.

Essential Duties and Responsibilities:

1. Oversee and manage implementation and maintenance of HireVue's information security compliance program, focusing on FedRAMP and FISMA.
2. Coordinate and facilitate periodic assessments and audits by third-parties and clients.
3. Oversee development and maintenance of HireVue's FedRAMP authorization.
4. Manage documentation of HireVue's control implementation using NIST SP 800-53 (rev 5).
5. Document plans of action to remediate control deficiencies.
6. Provide support as a contractor to federal clients as their ISSO.
7. Serve as primary point of contact for federal clients regarding the HireVue platform.
8. Facilitate client security testing and audit needs.

Qualifications:

• Bachelor's degree preferred
• 7+ years experience in information security and compliance, with focus on FISMA and NIST.
• 3+ FedRAMP product certifications
• Excellent communication skills (written and verbal), with experience working with management.
• Knowledge of encryption, application security, identity management, log management, disaster recovery, incident response, risk assessment, vulnerability management.
• Experience with cloud/SaaS security a plus.
• Certifications like CISSP or CISA desired.
• Ability to complete a Public Trust background investigation.
• Must work from home in a distraction-free environment.

What is the last date for applying to the job?

Which countries are accepted for this remote job?