Ingram Micro
Join our Talent Network

This site uses and sets "cookies" on your computer to help make this website better. You can learn more about these cookies and general information about how to change your cookie settings by clicking here. By continuing to use this site without changing your settings, you are agreeing to our use of cookies.

Skip to main content

Compliance Specialist

Santander, Spain
Job ID: 42370

Description

CloudBlue is a technology solution startup born from the need to digitally transform a multibillion-dollar enterprise. The CloudBlue platform orchestrates ecosystems for customers worldwide, including the largest B2B Cloud Marketplace in the world. We have spent 15+ years innovating and investing in digital transformation, subscriptions, and multi-level partner ecosystems. Today, hundreds of customers rely on CloudBlue to orchestrate their ecosystems and scale their businesses globally.

 

By joining the CloudBlue team, you’ll be playing a significant role in our growth, having an opportunity to make an immediate impact on the business. Our entrepreneurial scope means we operate with the agility of a high growth start-up, but with the confidence & backing of a Fortune 100 corporation, Ingram Micro.

At CloudBlue you'll work with a diverse and multi-cultural team that spans cultures, continents, and time zones to serve our global customer base. You’ll be a part of a culture that emphasizes trust, open communication, and continuous learning.

 

Key Responsibilities

  • Own and drive compliance activities for managed services customers through liaising with customer and internal teams ensuring adherence to security policies, process, standards, and guidelines 
  • Own the security incident and vulnerability management processes working with business operation teams to implement threat detection and mitigation processes and procedures 
  • Work with Engineering, Development, and Operations teams to ensure adherence to compliance requirements and to maintain security of intellectual property and other high-value assets 
  • Liaise with the broader security team to maintain the global security program as it relates to managed services clients

 

This position is perfect if you have:

  • Experience with actively monitoring and providing feedback about security trends and risks as they relate to business systems, policies, processes and infrastructure
  • Proven experience with security threat remediation, patch management compliance and reporting
  • Experience reporting on information security and compliance activities to organizational stakeholders and auditors
  • Experience with scope, design and implementation of information security controls
  • Developed process documentation, standards, policies, and architecture designs that support efficient security operations
  • Experience with management and maintenance of business continuity and security compliance programs, including GDPR, PCI DSS reporting
  • Operational experience with security controls, driving remediation required, performing root cause analysis and implementing continuous improvement process opportunities
  • Experience with developing metrics to report on security and privacy compliance performance
  • Proven management of an incident response process to include documentation, training, mock exercises and resource coordination during actual events
  • Experience monitoring and reporting on required corrective action plans relating to security and/or privacy compliance issues or audit deficiencies or observations
  • Monitor and report on the implementation of intrusion detection, firewall policies and malware software
  • Maintain up-to-date knowledge and understanding of information security threats, vulnerabilities, practices, principles and solutions

 

Knowledge/Experience:

  • Expert-level knowledge in one or more specific technical areas, such as network/cloud security, malware detection/analysis, threat intelligence, cryptography, vulnerability management, incident response, forensics, social engineering, or hacking techniques 
  • Experience responding to RFP/Risk Management questionnaires as well as templating response standards for our platform
  • Designing and implementing IDM solutions for internal and customer facing platforms 
  • Source code control and security best practices in a development environment 
  • Solid understanding of IT security industry standards (i.e. NIST; ISO-27001)
  • Familiarity with CSA (Cloud Security Alliance) standards and practices
  • Minimum of 5 years cumulative hands-on security, privacy and compliance experience
  • Artful communication skills and organizational savvy, to steer peers and leadership toward solutions that carefully balance business, risk, compliance, and engineering concern
  • Experience with established and/or emerging compliance programs preferred (GDPR, etc.)
  • Monitor and report on the implementation of intrusion detection, firewall policies and malware software
  • Designing and implementing security policies and practices on Cloud environments including Azure, AWS, GCP
  • Experience within a 24x7 production environment, preferably across multiple data centers and 3rdparty cloud environments

Nice to have:

  • Professional certifications in the security, privacy, risk management and audit areas highly desirable, such as: CISSP, CRISC, CISM, CISA

Join us in our continuous quest to grow a diverse and extraordinarily innovative team. We look forward to working with you!

Ingram Micro Inc. is committed to creating a diverse environment and is proud to be an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, veteran status, or any other protected category under applicable law.

 

CloudBlue
Share: mail

STILL LOOKING?

Get updates about the latest job openings
that match your skills.

Sign up today