Senior Compliance Assessor-CISA/CISSP

Overview:

• We are a leading AI-driven Global Supply Chain Solutions Software Product Company and one of Glassdoor’s “Best Places To Work”.

What you’ll do:

• Responsible for building, managing, and enhancing the Enterprise Cybersecurity Compliance function across all Blue Yonder business units. Execute compliance audit processes while collaborating with external auditors and regulators to ensure comprehensive and timely completion of the external auditors.
• Coordinate with Cybersecurity Sr. Director of Governance, Risk and Compliance to actively contribute to the creation, administration, and continual enhancement of Blue Yonder’s Cybersecurity Program, compliance frameworks, risk management practices and privacy protocols. Leverage technical knowledge and communication skills to collaborate with business leaders and technical stakeholders to identify, evaluate and manage security risks and controls. 
• Provide process-oriented, results-driven approach to compliance employing effective problem solving and communication skills. Provide input and support of the cybersecurity trust center, blog and Viva Engage. Provide expertise in identifying security control gaps and assist stakeholders in remediation mitigation.
• Educate and assist stakeholders to ensure that the risks are tracked and closed in a timely manner. Participate and assist sales, pre-sales and technical account managers in the completion of customer provided security questionnaires.  Ensure cybersecurity policies, processes, procedures, and plans are followed and align with cybersecurity roadmap during all audits.
• Researching industry compliance regulations and policies. Keep updated on compliance requirements and amendments to regulations. Evaluating internal operational and procedural compliance. Analyzing and updating existing compliance policies and related documentation.

What we are looking for:

• 8+ years-experience, CISA/CISSP certifications required, CRISC certification desired.
• Working knowledge and implementation expertise in security standards ISO27001, ISO27001, ISO27701, ISO9001, SSAE18 SOC1/SOC2, ISO27017/ISO27018, NIST, FedRAMP, HIPAA, GDPR, CCPA, etc.
• Familiar with Continuous Monitoring tools.
• Self-motivated and organized with proven ability to meet compliance deadlines.
• Excellent interpersonal skills, ability to work effectively with product development and internal audit teams.
• Proven ability to serve as an effective member of a compliance team.
• Experience in managing customer security assessments/questionnaires.
• Experience in educating stakeholders in security compliance audits.
• Lead security planning efforts and interact effectively with auditors, customers and key stakeholders.
• Excellent in customer service, strong written and oral communication and interpersonal skills.

Our Values

If you want to know the heart of a company, take a look at their values. Ours unite us. They are what drive our success – and the success of our customers. Does your heart beat like ours? Find out here: Core Values

Diversity, Inclusion, Value & Equality (DIVE) is our strategy for fostering an inclusive environment we can be proud of. Check out Blue Yonder's inaugural Diversity Report which outlines our commitment to change, and our video celebrating the differences in all of us in the words of some of our associates from around the world.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.