Information Security Compliance Manager - Planet San Francisco, California, United States Bookmark Share Print 75 0 0

Listing Description

About the Role: 


Planet is seeking an experienced Information Security Compliance Manager to join our dynamic Security  team. In this critical role, you will be responsible for managing the governance, risk, and compliance for various compliance frameworks, including ISO 27001, UK Cyber Essentials, SOX, NIST 800-171 standards. As an Information Security Compliance Manager, you will play a pivotal role in ensuring the security and compliance of our information systems and data, providing expert guidance, and driving continuous improvement in our security posture across corporate security and the enterprise. 


Impact You’ll Own:



  • Develop and maintain information security policies, procedures, and guidelines that align with ISO 27001, SOX, NIST 800-171, and UK cyber essentials  requirements

  • Lead Planets Information Security Management System (ISMS) in accordance with ISO 27001 standards

  • Oversee the Information Security compliance efforts for Sarbanes-Oxley Act (SOX) requirements related to information security controls and reporting

  • Collaborate with cross-functional teams to establish and enforce information security policies, procedures, and standards

  • Conduct risk assessments, gap analyses, and control assessments to identify and mitigate security risks

  • Develop and implement a robust vendor and third-party risk management program to assess and monitor the security posture of external partners

  • Conduct due diligence assessments of third-party vendors to ensure they meet security and compliance requirements

  • Collaborate with the incident response team to ensure that GRC activities are aligned with incident response procedures and that potential risks are adequately addressed

  • Participate in post-incident reviews to identify weaknesses in the GRC program and recommend improvements to prevent future incidents

  • Collaborate with the training and awareness team to develop and deliver GRC-related training programs for employees to ensure they understand their roles in compliance and risk management

  • Building and maturing Planets security compliance across corporate, product, and manufacturing

  • Fostering greater consistency of security compliance across the company

  • Authoring, maintaining, and maturing policies, procedures, and standard documents

  • Building and maintaining Planets Corporate Security function that supports and enables internal and external customers

  • Building upon existing once a year certifications and audits to continuous compliance


What You Bring:



  • Excellent understanding of information security principles, practices, and technologies

  • Excellent knowledge of compliance frameworks, regulations, and standards

  • Exceptional communication and interpersonal skills with the ability to collaborate effectively with cross-functional teams

  • Excellent analytical and problem-solving skills

  • Detail-oriented and able to manage multiple projects simultaneously

  • Experience with risk assessment methodologies and tools

  • Passion for identifying opportunities to improve policies, processes, and procedures, and socializing ideas with colleagues toward fostering common cause

  • Passion for improving the status quo and making teams work better together

  • 5-7 years of Governance, Risk, and Compliance  experience


What Makes You Stand Out:



  • Experience leading and maturing compliance initiatives while enabling teams across the company to scale and mature

  • Experience building and fostering security compliance relationships across the corporate landscape

  • Experience managing complex compliance requirements through automation and reducing compliance overhead across Planet


Benefits While Working at Planet:



  • Comprehensive Health Plan

  • Wellness program and onsite massages in specific offices

  • Flexible Time Off

  • Recognition Programs

  • Commuter Benefits

  • Learning and Tuition Reimbursement

  • Parental Leave

  • Offsites and Happy Hours

  • Volunteering Benefits


Compensation:


The US base salary range for this full-time position at the commencement of employment is $109,800 - $108,600.  Additionally, this role might be eligible for discretionary short-term and long-term incentives (bonus and equity). The final salary range is determined by job related experience, skills and location.  The range displays our typical hiring range for new hire salaries in US locations only.  Your recruiter can share more about the specific salary range for your preferred location during the hiring process.


#LI-REMOTE


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Not Provided



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765