Candidate Solutions

Search Jobs

  • Share this Job

Security Compliance Specialist

Location : Burbank, CA (Hyrbid)
Job Type : Temp/Contract
Compensation : open - 85.00-90.00
Start Date : 01/02/2024
Hours : Full Time
Required Years of Experience : 3-5
Required Education : BS degree or equivalent work experience

Job Description :

  • Evaluates compliance with programs and processes to mitigate cybersecurity risk and ensure protection of company and allied assets and information

  • Reviews and enhances network systems and processes for compliance with external regulations and internal standards

  • Proactively identifies non-conforming areas and assesses risk.

  • Recommends and implements compliance measures.

  • Provides advice on compliance issues to solve challenging security compliance problems. Ensures documentation and reporting in support of analysis.

  • Stays current on evolving legislative / regulatory changes related to security compliance.

  • Coordinates with multiple stakeholder groups across the company to assess and monitor information security risks resulting from the use of external service providers.

  • Responsible for planning, conducting and reporting on third party assessments as part of responsible vendor management including assessment planning, execution, and reporting; generating and distributing monthly findings past due reports; conducting RFP or rapid assessments when business conditions warrant; reviewing and acting upon requests for new personal computer software; and providing quality assurance reviews of assessments conducted by others.

  • Lead the third party assessment of outside legal counsel in support of Legal Operation’s mission. This effort includes planning, conducting, and reporting on external law firms and following-up and tracking resolution of agreed-upon finding remediation plans. This works includes understanding the technology footprint of small to medium sized law firms and explaining and making reasonable security recommendations given the inherent risk of the company matters at the firm.

  • Provide consulting to internal business partners regarding third party risk and business side responsibility for controls when engaging a third party to deliver business objectives.

  • When requested, provide timely advice on security requirements in proposed and existing vendor contracts including advising the requestor when vendor proposed changes represent a high risk to the company’s interests. The foundation for this work are standard security exhibits developed by Legal Technology. Track the advice given for KPI reporting as well as for support of subsequent third party assessments.

  • Support the manager in preparing biweekly and monthly KPI, KRI, and status reports.

  • Oversee data quality and workflow processes with Enterprise tools by conducting periodic data quality reviews; documenting and maintaining third party assessment procedures; and submitting requests for changes and enhancements based on changing third party assessment needs.

  • Conduct quarterly disaster recovery inventory compliance work and prepare timely reports to leadership. This effort involves coordinating with ISO teams in every segment and data transformations to transform received data into standardized content. As needed provide disaster recovery advice to technology teams and maintain working relations with the company business continuity planning.

  • Act as the product owner for the selected non-invasive website scanning tool including user administration, new user training, and tool usage across the company to meet the objectives of continuous monitoring and point-in-time vulnerability monitoring of third party firms

Required Qualifications :
Basic Qualifications:

  • BS degree or equivalent work experience

  • Minimum of 5 years of experience in Information Security, Risk Management, Vendor Management or related field.

  • Strong verbal and written communication skills.

  • Familiarity with website security as well as advanced excel formula creation is preferred.

  • Familiarity with law firm operations and technology would be a plus.

  • Information Security, Risk, or Audit certifications preferred. Examples of preferred: CISSP, CISA, CISM

  • Attention to detail

  • Analytical mindset

  • 3-5 years previous work experience in similar role demonstrating increased responsibilities and career growth

  • Experience with Sharepoint

Preferred Qualifications:

  • Ability to think logically and creatively to find and present solutions to questions.

  • Ability to compose narrative responses to technical questions.

  • Understanding a law firm’s overall control environment as well as the varying requirements in different countries.

  • Proficient in Microsoft Outlook, Word and Excel. 

  • Experience with NetDocuments, ProcessUnity, SecurityScorecard, Slack, and Zoom would be a plus.

  • Ability to smoothly transition between changing priorities and processes.

  • Self-motivated and results-oriented.

Additional Information: 

  • Potential temp-to-perm opportunity for the right individual

  • Work Schedule (8AM to 5PM or 9AM to 6PM)

  • 3-4 Days Onsite

Skills :
Excel Information Security NetDocs Outlook SharePoint
Powered by AkkenCloud