Cyber Security Engineer

Palo Alto, CA

Atlanta, GE

Plymouth, MI

12 month contract

Schedule : M-F (9-5, 8-6- local time and flexable depending on business needs)- average 8 hours day

This is a hybrid role - 3 days / week on site in ATLANTA, Plymouth, Irvine or Palo Alto - pl ease be sure all candidates submit within these location

Working in an agile environment, the Senior Cybersecurity Analyst (Compliance

Manager) will focus on assisting with the successful achievement of specified industry-

specific certifications for the organization. This role will report to the Senior Director of

Cybersecurity Risk Management in the Enterprise Cybersecurity organization. As

a member of the team, you will contribute to compliance activities related to multiple

frameworks including ISO 27001, TISAX, and NIST CSF. The ideal candidate brings a

strong understanding of risk assessment, understanding operating effectiveness,

recommending and coordinating security controls implementation activities, and

contributing to enhance the overall compliance and cybersecurity program. In this role,

the Senior Cybersecurity Analyst (Compliance Manager) will collaborate with Enterprise

Cybersecurity and cross-functional business leaders to obtain and maintain globally

recognized information security certifications specific to the cybersecurity domain and

automotive industry for improved security, data protection, and proving assurance to

business partners as an original automotive manufacturer. The duration for this

contractor position is up to 18 months.

Core Responsibilities :

• Serve as a subject matter expert for compliance initiatives with a specific focus of ISO 27001, and TISAX. Understands the practical application of NIST CSF.
• Assist in performing detailed assessments with a focus on risk information, including self-assessments and working with external auditors covering s information security system and cybersecurity program maturity.
• Provide the appropriate level of support to demonstrate that has undergone rigorous external verification and complies with the appropriate level of information security standards within the TISAX framework.
• Assist in achieving ISO 27001 certification if its ISMS, subsequently reducing risk and optimizing operations facilitating meeting additional compliance requirements.
• Demonstrate the appropriate level of ownership for assigned responsibilities; proactively identify, escalate, and resolve impactful risks and issues.
• Possess deep expertise regarding cybersecurity risk management and apply this proficiency to initiatives, problems and opportunities.
• Develop, report and track key actionable metrics, milestones, goals, and learnings for improvement.
• Utilize the team's JIRA board and track and report activities through closure.
• Provide input into longer-term planning activities at vertical and domain level, work cross-functionally with diverse stakeholders.
• Execute a comprehensive compliance strategy aligned with cybersecurity objectives and industry best practices; identify gaps and ensure compliance with standards across the enterprise.
• Develop an executive-level dashboard to track and generate metrics reports

related to cybersecurity compliance on a recurring basis by partnering with the

appropriate teams to develop Key Risk Indicators (KRIs) to drive compliance and deliver on overall program performance.