Senior Cybersecurity Compliance Engineer
Equinix
Singapore
4d ago

Job Summary :

Serving as a key member of the Information Security team, the Senior Cybersecurity Compliance Engineer reports to the Sr Manager of Information Security, Risk & Compliance (SRC).

Our team is rapidly expanding its global presence and we are looking for a highly motivated Compliance Engineer to join our Information Security Risk and Compliance (SRC) team.

As part of the team, you will work with internal and external customers and regulators to demonstrate Equinix’s control applicable to local requirements.

You will join our team in supporting customers to ensure that our infrastructure is designed, operated, maintained, and protected in accordance to global regulated industry standards

Duties

Specific responsibilities include :

  • Serving as SENIOR TECHNICAL subject matter expert (SME) for portfolio of information security compliance requirements
  • Providing specific, actionable guidance about implementing specific security controls in a range of functions including networks, servers, databases, applications, software development, operations, etc.
  • Providing deeply technical readouts to CISO and Directors of Information Security
  • Collaborating with SENIOR technical SMEs from business units that include Infrastructure, Enterprise Applications, Product Applications, Datacenters, Network Operations, Internal Audit, Product Management, Legal, and HR
  • Managing engagements with specialized third-party consultants
  • Collaborating with program and project managers to ensure timely and effective delivery of highly complex security initiatives
  • Assist in the development and implementation of a continuous compliance monitoring framework
  • Qualifications

  • 6+ years of experience in performing and / or participating in technical audit assessments.
  • At least 3 years as a SENIOR TECHNICAL SME for industry information security standards, e.g. ISO 27001, NIST.
  • Ability to translate abstract security control language into specific, actionable guidance for a range of functions and technologies including networks, servers, databases, applications, software development, operations, OT / ICS
  • At least 3 years as a SENIOR TECHNICAL SME for MULTIPLE other prominent compliance programs such as, SOC 2, PCI-DSS, OSPAR, TVRA, ASAE3402 Type II
  • Ability to translate abstract security control language into specific, actionable guidance for a range of functions and technologies including networks, servers, databases, applications, software development, operations, OT / ICS etc.
  • Ability to explain in detailed yet plain language the differences between NIST CSF, NIST 800-53, and NIST SP 800-171. NIST 800-82 experience is a plus.
  • Ability to explain in detailed yet plain language the concepts behind the Cloud Security Alliance Cloud Controls Matrix (CSA CCM)
  • Unmistakably skilled at collaborating with a broad range of technical and non-technical stakeholders at a large global business such as Equinix.
  • Education

  • A Bachelor’s degree in a computer-related field.
  • Preference will be given to candidates having one or more advanced security credentials, for example, CISSP, CISA, CISM, CCSP, SSCP, CompTIA CASP, CompTIA CySA, etc.
  • Report this job
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form