Security And Compliance Engineer

Intuit San Diego , CA 92140

Posted 1 week ago

Interact with senior leadership to support cross-functional security and compliance initiatives, including providing subject matter expertise over security processes for new and ongoing customer and regulatory requirements. Work across organizational boundaries to drive implementation of compliance requirements and security controls.

Perform security and risk assessments across the organization as well as third parties to identify risks and report findings. Define compliance procedures and practices and influences stakeholders to drive appropriate alignment and acceptance. Participate in the automation of compliance requirements Partner with the architect and engineering community Partner with Legal and Privacy Partner with the internal Information security functional teams to ensure integration of critical components Create continuous view of compliance dashboards to bring risk visibility to leaders and ensure any impact to compliance is quickly reported Define metrics to demonstrate Intuits compliance posture to senior leaders Partner across teams to define roadmaps, project plans, and ensure compliance deliverables or remediation plans remain on-track.

Work well with others when conflicts arise see opportunities, ensure alignment with objectives, find common ground and promote understanding of alternative viewpoints before driving for closure and cooperation. Support creation of information security policies, standards, and requirements. Promote a security culture across Intuit Qualifications BA/BS in Engineering, Computer Science, Information Systems or equivalent. 7+ years of experience in cross-functional security and compliance related projects Experience with public cloud environments and technologies such as Amazon Web Services or Google Cloud Experience with regulatory and compliance frameworks such as PCI DSS, ISO, NIST 800-53, NY DFS, CSC CIS-20, SSAE16/SOC2 in data center and cloud environments Proven expertise leading cross-functional teams building partnerships across multiple business units and executing effectively A self-motivated person who can influence and drive cross-functional, cross-geo teams, promoting timely and effective communication Certifications such as CISA, CISM, CISSP, or equivalent preferred. Readiness to become a thought leader for aspects of cyber security across multiple domains Ability to work well with multi-disciplinary teams focusing on user and customer needs Ability to work in a fast paced and collaborative setting Strong customer focus with ability to interpret and utilize the data Must possess strong consulting, documentation and presentation skills Good organizational skills, proactive and self-sufficient with a proven ability to work independently and prioritize deliverables.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Application Security Engineer

Sony Playstation Network

Posted Yesterday

VIEW JOBS 4/23/2019 12:00:00 AM 2019-07-22T00:00 PlayStation isn't just the Best Place to Play —it's also the Best Place to Work. We've thrilled gamers since 1994, when we launched the original PlayStation. Today, we're recognized as a global leader in interactive and digital entertainment. The PlayStation brand falls under Sony Interactive Entertainment, a wholly-owned subsidiary of Sony Corporation. Do you want to help bring PlayStation technology to a worldwide audience? Are you passionate about securing infrastructure that constantly pushes the boundary of the gaming industry? Are you ready to work with innovative technology, bright engineers, and a passionate security team? If so, join us! The Application Security Engineer position is a hands-on engineering role for someone who likes working in multi-disciplined teams and with other sharp engineers in a success-oriented, fast-paced, and fun environment. The Application Security Engineer will provide expert technical guidance and hands on validation of secure solutions during the design, development, and testing of systems supporting the Sony Interactive Entertainment products and services. Key Responsibilities * Collaborate with engineers, consultants and leadership to address security risks and provide mitigation recommendations within the Secure Development Lifecycle (SDLC). * Perform security architecture and design reviews of all systems and applications developed in Sony Interactive Entertainment. * Perform validation of security controls to insure adherence with compliance and industry best practices. * Perform hands on security testing of products and services to proactively discover risk and track them to resolution. * Understand, balance and communicate business risk with security risk. * Ability to understand business requirements and apply security without adversely affecting the desired functionality. * High level of personal integrity, with the ability to professionally handle confidential matters, and reflect appropriate level of judgment as it pertains to security. * Leading includes keeping better communication with other engineers, consultants and leadership in order to conduct other job duties in the above as a team. Qualifications * Bachelor's degree in Computer Science, Information Security/Cyber Security or equivalent. * 3+ years' previous experience in information security. * 2+ years' experience working within software development. * Excellent written and oral communication skills, as well as interpersonal skills including the ability to articulate to both technical and non-technical audiences. * Firm understanding of enterprise class application architectures that are highly scalable and reliable and the ability to secure them. * Experience of security architecture and design reviews. * Experience with multiple languages such as Java, Go, Python and Perl etc. and understand how to detect and remedy related security issues such as OWASP top 10. Desired Experience * Excellent analytical, evaluative, and problem-solving abilities. * Experience with securing host, database, and application solutions for multi-tier systems. * Experience with Penetration Testing. * Knowledge of automated attack tools and developing mitigation techniques. * Hacker mindset and always strives to think like an attacker. * Experience with AWS and Akamai technologies. * Technical certifications within information security are a plus (CISSP, CCSP, GIAC or equivalents). Sony is an Equal Opportunity Employer. All persons will receive consideration for employment without regard to race, color, religion, gender, pregnancy, national origin, ancestry, citizenship, age, legally protected physical or mental disability, covered veteran status, status in the U.S. uniformed services, sexual orientation, marital status, genetic information or membership in any other legally protected category. We strive to create an inclusive environment, empower employees and embrace diversity. We encourage everyone to respond. We sincerely appreciate the time and effort you spent in contacting us and we thank you for your interest in PlayStation. #LI-GM1 Sony Playstation Network San Diego CA

Security And Compliance Engineer