Senior Security Assurance and Compliance Specialist

Company: Neustar, Inc
Location: Sterling
Posted on: April 6, 2021

Job Description:

Senior Security Assurance and Compliance Specialist Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. More information is available at https://www.home.neustar . Job Requisition:R-3473 Senior Security Assurance and Compliance Specialist (Open)Primary Location:Sterling, VirginiaJob Description:IntroductionNeustar is seeking a Senior Security Assurance and Compliance Specialist to join the Neustar Internal Risk & Compliance (IRC) team. IRC enhances business operations by assessing and providing guidance on strategies and processes to help manage risk, provide assurance, and ensure compliance. The Senior Security Assurance and Compliance Specialist will be responsible for performing and improving processes to help provide assurance to Neustar's customers and other stakeholders that it has a strong control environment and is compliant with its information security and contractual requirements.Your Roles and ResponsibilitiesAs a member of IRC, you will, working independently and/or as part of team activities and projects:

• Respond to information security related questions from customers in pre-sales questionnaires and post-sales control assessments and inquiries. Manage all related activities to ensure proper tracking, prioritization, engagement of internal functions/personnel, and accurate responses to customers by agreed upon due dates. Assist with managing and maintaining the repository of related materials including prior questionnaires, authoritative responses, and relevant artifacts.
• Review and edit information security related terms in customer contracts to help ensure such requirements are appropriately addressed.
• Perform and facilitate processes to help the organization meet compliance requirements, such as access reviews. Activities to include creating, communicating, tracking and reporting on related processes and tasks.
• Assist with customer and external audits to help demonstrate Neustar's compliance with its information security requirements. Activities to include interfacing with customers and external auditors, completing pre-audit questionnaires, facilitating interviews, providing artifacts, and post-audit follow up to help ensure audit findings are tracked and communicated through remediation.
• Assist with control testing to verify Neustar's compliance with its information security and contractual requirements. Activities to include identification and tracking of requirements from relevant sources, mapping of requirements to applicable controls, review and update of test plans, performing testing, documenting and reporting results, and tracking any issues through remediation.
• Identify and follow up on opportunities to continually improve processes.
• Develop expertise on Neustar's information security policies, standards, processes and technical controls.
• Perform all responsibilities and complete all milestones and deliverables thoroughly, accurately, and in a timely manner or agreed upon timeframes.
• Stay current on information security risks, attacks, mitigations, technologies, and trends, and changes or updates to relevant standards and legal/regulatory requirements.Your Qualifications
  • 5+ years experience in one or more relevant disciplines (information security, security risk management, IT/security audit or IT/security compliance).
  • Experience communicating and interacting with senior management and customers in written and verbal forms.
  • Experience responding to customer security questionnaires and reviewing contracts for information security requirements.
  • Experience performing and facilitating compliance processes.
  • Experience performing IT and security compliance testing in public/private cloud environments such as AWS and GCP.
  • Knowledge of and/or experience with SOC2, ISO 27001/2, CIS, NIST CSF and 800 series, and similar security standards.
  • Knowledge of and/or experience with cloud environments, cloud security, network security, virtualization, configuration management, DevSecOps, CI/CD, containerization, identity and access management, endpoint security, and data protection is a plus.
  • Certifications such as CISSP, CISA and cloud platforms are a plus.
  • Demonstrated ability to prioritize, work independently, work in a team environment, and work on multiple projects concurrently.
  • Must be self-motivated, self-directed, well-organized, driven, proactive, and have a positive, can-do attitude.
  • Bachelor's degree.Neustar does not accept unsolicited resumes from external firms or agencies. Neustar will not be responsible for placement fees associated with unsolicited resumes. DIVERSITY
    Diversity, inclusion and teamwork are second nature to Neustar; and these values permeate our entire business structure. Neustar is committed to creating an environment where a wide spectrum of opinions and beliefs are actively sought, listened to and respected. Further, our talented workforce draws from the many geographic areas and markets in which Neustar operates worldwide, which represents a distinct competitive advantage. The rich and varied personal and professional backgrounds of our employees make Neustar a dynamic and rewarding company at which to build a career. We invite you to join us.
    
    EOE of Minorities/Females/Vets/Disability
    Neustar, Inc. considers all applicants for employment without regard to race, color, religion, sex, national origin, age, disability, sexual orientation, or status as a Vietnam-era or special disabled veteran in accordance with federal law and other state and local requirements. Neustar, Inc., complies with applicable state and local laws prohibiting discrimination in employment and provides reasonable accommodation to qualified individuals with disabilities in accordance with the American with Disabilities Act (ADA) and applicable state and local laws. Full time R-3473 About Us Neustar is an information services and technology company and a leader in identity resolution providing the data and technology that enables trusted connections between companies and people at the moments that matter most. Neustar offers industry-leading solutions in Marketing, Risk, Communications, and Security that responsibly connect data on people, devices and locations, continuously corroborated through billions of transactions. Neustar serves more than 8,000 clients worldwide, including 60 of the Fortune 100. Learn how your company can benefit from the power of trusted connections here: https://www.home.neustar .

Keywords: Neustar, Inc, Sterling , Senior Security Assurance and Compliance Specialist, Other , Sterling, Virginia