| Location: | Cambridge, MA, US | Posted Date: | 2016-01-04 00:00:00.0 | ||
| Category: | Network Security | ID: | 48708 |
Overview:
About the Job
Security and Compliance under appreciated where you are? Not here, we take them seriously and are backed by a company that makes security a priority as part of the culture. Join us to run assessments like the annual SSAE-16 assessments, including organization, preparation and basic technical remediation.
Are you curious, communicative, creative, and adroit at learning new technologies quickly? Does your curiosity include analyzing systems? And can you distill the verbose compliance standards into comprehensible objectives and communicate them to diverse audiences? Are you comfortable communicating with collaborators in a wide range of roles both internal and external to your team and company? Do you have experience interpreting the language of compliance standards to determine how it might apply to a novel business process? If so, come join our team of intrepid guides, steering Akamai Faster Forward through the jungle of compliance standard requirements!
As a Program Manager 2 in InfoSec’s Compliance team, you will have the opportunity to learn detailed technical information concerning the safety and operation of Akamai’s platform and determine how best to correlate it with existing security standards (such as SSAE-16, ISO 27002, PCI-DSS, etc.). You will work with your teammates, employees throughout the company and external assessors. Together you will prepare and facilitate audits, and shepherd issues to resolution. You will coordinate small groups for short-term projects, generally lasting a few days to a few months. You will also handle daily operational items, like tracking the emergence and remediation of security vulnerabilities.
About the Team
Akamai's InfoSec Team is responsible for safeguarding the security of the business, from corporate information security through protection of the production systems on the Internet. Within this larger context, the Assurance team works closely with product and platform teams throughout the company to help ensure that Akamai systems meet both the safety and compliance needs of our customers and the public.
Responsibilities:
* Join us to run assessments like the annual SSAE-16 assessments, including organization, preparation and basic technical remediation. This will involve:
* Scheduling and leading interviews with internal subject matter experts.
* Document preparation and review.
* Communicating comfortably with vendors to drive the RFP and selection processes.
* You will become proficient in additional standards as needed, including HIPAA, PCI DSS, ISO 27002, and Sarbanes-Oxley (SOX).
* Gather and analyze audit findings and evaluate items of note. This may include document review, interviews of experts, and collecting evidence.
* Document processes and procedures, and work with various groups at Akamai (e.g. Engineering, Corporate functions, etc.).
* Perform daily and weekly operational work tracking and following up on such items as key authenticator rotations, vulnerability management, documentation reviews and updates, and presenting the security section of weekly New Hire Orientation sessions.
* Continually improve our processes and services.
Qualifications:
Basic Qualifications
* Bachelor’s degree or equivalent experience plus 5 years qualifying work experience.
* 3+ years of experience with SSAE-16, ISO 27002, PCI-DSS, HIPAA, SOX, or other information security standards.
* 3+ years of experience organizing and leading a geographically distributed team to successfully deliver a multi-day event or performance.
* 3+ years of experience solving problems with computers.
Desired Qualifications
Emotional patience, gentle good humor, an even keel and an appreciation for the absurd.
Tech Oriented:
* Credit or reputation for being a kind and effective compliance officer.
* Experience:
* With the production of theatrical performances.
* Documenting technical systems of architecture assessor’s can understand.
* Working knowledge of auditing principles, practices and compliance standards.
* With building respectful relationships between departments.
* Working with compliance standards fitting non-standard situations.
* Specific experience with writing controls for SSAE-16 especially desired
Collaboration Oriented:
* Outstanding written and verbal communication skills, specifically with the ability to:
* Listen deeply and well (including to hear what is not being said, as well as what is).
* Analyze and articulate complex concepts to a broad range of technical and business audiences.
* To be persuasive, using these superpowers for the good and security of all.
Miscellaneous
* Strong organizational skills – you will have a good deal of independence.
* A firm understanding of information security principles.
* An insatiable curiosity and a love of challenges.
Other Information
* Is relocation available for this position: No
* Is US Citizenship required: No
* Is a Security Clearance Required: No
If yes, applicants selected will be subject to a government security investigation & must meet eligibility requirements for access to classified information.
About Akamai:
Akamai® is the leading content delivery network (CDN) providing cloud services that help deliver, optimize, and secure online content and business applications. At the foundation of Akamai solutions, the Akamai Intelligent PlatformTM enables unmatched speed, reliability, and security–backed by expertise and relentless innovation–to improve reach and invisibility across the web. Akamai removes the complexities of connecting the increasingly mobile world, supporting 24/7 consumer demand, and enabling enterprises to more securely leverage the cloud. To learn how Akamai is accelerating the pace of innovation in a hyperconnected world, visit www.akamai.com, and follow @Akamaijobs on Twitter.
Akamai Technologies is an Affirmative Action, Equal Opportunity Employer that values the strength that diversity brings to the workplace. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of gender, race/ethnicity, protected veteran status, disability, or other protected group status. EEO is the Law.