FullStack Labs is the fastest-growing software consultancy in the Americas. We help organizations like Uber, GoDaddy, MGM, Siemens, Stanford University, and the State of California, build distributed software development teams, and deliver transformational digital solutions.
As an employee-first company, we focus on hiring the most talented software designers and developers in the western hemisphere, by creating a positive, respectful, and supportive work environment where they can achieve their greatest potential.
We’re most proud of : *Offering life-changing career opportunities to talented software professionals across the Americas.
Building highly-skilled software development teams for hundreds of the world’s greatest companies.*Having delivered hundreds of successful custom software solutions, which have positively impacted the lives and careers of millions of users.
Our rating on GlassDoor.*Our client Net Promoter Score of 64, twice the industry average.*Sustained growth of 100% - 200% per year.
The Position :
We're looking to hire a professional who has deep experience with Security and Compliance for Software Services. Primary responsibilities will include :
Develop internal company policies and controls and track compliance.
Achieve certifications and pass audits for standards such as SOC 2, ISO 27001, HIPAA among others.
Work with auditors to ensure certifications are properly achieved year over year.
Report to management concerning the organization’s compliance with laws and regulations.
Take action in dealing with noncompliance situations, creating realistic plans to overcome them.
Conduct regular internal audits to identify potential weaknesses and noncompliance situations.
Communicate with employees and make sure everyone is aware of what they need to do to comply with internal and external laws and regulations.
Make sure the organization has a clearly defined program for complying with each country’s laws
Analyze management and technical controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures and standards in order to validate maintenance of secure configurations.
Monitor third-party risk assessments and assist in performing internal risk assessments.
Collaborate on critical IT projects to ensure that security policy / risk issues are addressed throughout the project life cycle for FSL’s clients.
Develop key performance metrics to track and ensure compliance with established policies and standards.
Support development of security processes and procedures and support service-level agreements to ensure that security controls are managed and maintained.
Participate in the development of security and privacy awareness training in conjunction with other members of the Security Compliance group.
What We're Looking For :
Bachelor's degree in business, with IT audit or compliance experience, or computer science, with business and IT audit or compliance experience desired
Knowledge and understanding ofSOC-2, FISMA and NIST and information security standards
Working knowledge of common IT security-related regulations and / or standards such as Sarbanes-Oxley, ISO, HIPAA and PCI highly desired
Minimum five years' experience conducting security control assessments or audits
Minimum two years' experience developing or managing a security awareness program
SOC-2 audit experience from a major professional services firm highly desired
At least one industry certification (e.g. CISA, CISM, CRISC, CISSP, ISAAP) highly desired
General Requirements :
Strong oral and written communication skills
Ability to maintain security documentation and manuals
Must have strong analytical and critical-thinking skills
High-level of attention to detail and be a self-starter with ability to work independently, multi-task and adjust to shifting priorities
Paid Time Off (vacation, sick leave, maternity and paternity leave, holidays)
100% remote work, now and post COVID.
The ability to work with leading startups and Fortune 500 companies
Prepaid medical insurance
$500,000 per month Sodexo food card
Virtual company events each month
Ample opportunity for career advancement
Continuing education opportunities
FullStack Labs is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.
If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form, which can be provided upon request during our hiring and interview process.