Cybersecurity Compliance Lead

Position: Cybersecurity Compliance Lead

Location: St Paul, Minnesota 55110

Duration: 12 Months

Job Type: Contract

Work Type: Hybrid (3 days onsite)

Pay Rate: $60.00/h to $75.00/h on W2

Overview:

TekWissen Group is a workforce management provider throughout the USA and many other countries in the world. Our client is a company that specializes in global climate technologies. It operates in the Climate segment that delivers energy efficient products and energy services. The company offers the client and American Standard Heating & Air Conditioning which provides heating, ventilation, and air conditioning (HVAC) systems, and commercial and residential building services, parts, support, and controls; energy services and building automation.

Job Description:

• As part of the Product Security and Compliance team, the Cybersecurity Compliance Lead will be responsible for developing, implementing, and overseeing the cybersecurity compliance program that ensures products adhere to relevant security standards and regulations, such as NIST, FedRAMP, TXRAMP, SOC2, ISO, and IEC.
• The ideal candidate for this role has both the technical expertise and leadership skills necessary to influence and collaborate across multiple stakeholder groups.

What you will do:

• Responsible for planning, leading, and managing compliance-related activities such as conducting assessments, audits, testing, and issue remediation related to NIST, FedRAMP, TXRAMP, SOC2, ISO, IEC and other relevant requirements.
• Maintain compliance framework assessment toolkits used in testing and validation procedures.
• Monitor updates to relevant security frameworks and adjust program requirements as needed, and report changes to leadership
• Monitor activities to ensure compliance with internal policies, standards, processes and procedures
• Ability to manage and coordinate all aspects of compliance operation, including tactical & strategic planning, reporting, etc.
• Collaborate effectively within the Product Security and Compliance team, various Engineering and IT stakeholders, as well as other internal/external partners to build relationships supporting accountabilities.
• Collaborate effectively within the Product Security and Compliance team and pre-sales support team to support customer cybersecurity questionnaires, requirements and audits.
• Implement continuous improvement on product security compliance-related processes and procedures.
• Communicate complex information, concepts, and metrics in a confident and well-organized manner through verbal, written, and visual means and tailored to the audience.
• Proficient understanding of business focus and processes, with the ability to integrate cybersecurity compliance into the business through effective teamwork and influence.
• Ability to maintain a high level of integrity, trustworthiness, and confidence in representing the company and security leadership with the highest level of professionalism.
• Excellent project management, personal and organizational skills.

What you will bring:

• Bachelor's or Master's degree in Computer Science, Electrical Engineering or similar engineering discipline with an emphasis on cyber security
• Minimum of 3-5 years of experience with security control frameworks, including NIST-CSF, NIST 800-53, ISO 27001, FedRAMP, SOC 2, and IEC.
• In-depth knowledge of governance, risk, and compliance best practices.
• Experience in Project and Program Management.
• Strategic thinker with the ability to proactively plan and roll up program activities.
• Experience in change management and strategic communications.
• Demonstrated success in delivering large-scale complex programs/projects and initiatives.
• Desirable security certification(s): CISM, CISSP, CISA, CRISC, PMP.

TekWissen® Group is an equal opportunity employer supporting workforce diversity.