Cyber Security Compliance Engineer

Are you ready to embark on an exciting journey with one of the leading companies in the software industry? Look no further– Workiva is seeking a talented Cybersecurity Compliance Engineer with a passion for sustainability, a hunger for growth, and a desire to make an impact. 

The Cybersecurity Compliance Engineer serves as the customer-facing role within the Information Security team, responsible for supporting customers and prospects with their security due diligence. This role involves improving processes, managing documentation libraries, and handling security-related deliverables for customers. The Cybersecurity Compliance Engineer will contribute to the security of the Workiva Platform by identifying both short-term and long-term customer needs to foster trust. Additionally, they will manage customer and prospect assessments and audits in alignment with regulatory compliance and industry standards.

What You’ll Do

• Foster Customer trust by managing and improving processes, and security related Customer deliverables

• Educate Customers and Prospects on Workiva’s infrastructure and security framework; built upon the underlying NIST and ISO frameworks

• Collaborate with internal stakeholders, including sales, product development, and legal team to address security related inquiries and concerns

• Provide security information, recommendations and implement directives within other areas of Workiva

• Identify and manage issues and concerns of Customers to improve Workiva’s security and compliance

• Prioritize the fulfillment of security requests from Customers and compliance areas; including questionnaires, RFPs and security documentation 

• Mark up security related terms in contracts with Customers

• Stay up to date about existing and any upcoming security and privacy regulations/standards across the globe

• Oversee the execution of security assessments for new technologies, 3rd party vendors, and acquisitions

• Collaborate with stakeholders during the due diligence process to ensure that Prospects and Customers are provided with information that instills their trust in the Workiva Platform

• Serve as the face of Security for Information Security

• Manage Third – Party Risk Management best practices for Workiva customers/prospects

• Assist with analytical methods for audits, assessments, and data gathering

• Assess existing security controls, and provide consulting on industry best practices

What You’ll Need

Minimum Qualifications

• B.A./B.S. degree in Computer Science or related field, or equivalent work experience

Preferred Qualifications

• 4+ years of security or compliance experience in a SaaS environment and/or heavily regulated environment

• Strong understanding of Cybersecurity frameworks, regulations, and standards (FedRAMP, NIST, ISO 27001, GDPR, DORA, SOC, etc.) and their application in business context

• Knowledge of TPRM, SOX Reporting

• Knowledge of NIST Framework, ISO framework and GRC processes

• Cloud Security Experience

• Understanding of SOC 1 and 2

• Experience with Loopio

• Prior knowledge and understanding of relevant legal and regulatory requirements, such as SANS and ISO27001, FFIEC, MAS, DORA, GDPR, etc.

• Prior knowledge and understanding of common information security management frameworks such as HITRUST, ISO, IEC27001, ITIL, COBIT

• Experience with regulatory audits 

• Knowledge in Procurement and sourcing 

• CISSP, CISM or other information security certification preferred

• Strong planning and organizational skills; project management experience is a plus

• Strong attention to detail with the ability to prioritize multiple projects, along with excellent verbal, written, and interpersonal communication skills.

• Ability to influence at all levels and in various departments

• Ability to set priorities, meet deadlines, and manage multiple projects in a fast-paced, changing environment

• Exceptionally strong personal integrity, and ability to professionally handle confidential matters while showing an appropriate level of good judgment and maturity

Physical Requirements and Working Conditions

• Embrace your inner wanderlust – expect up to 25% travel

• Stay virtually untethered with the power of reliable internet access, enabling you to work remotely from your chosen spot, whether that’s your home office or a beachside café

How You’ll Be Rewarded

✅ Salary range in the US: $79,000.00 – $134,000.00

✅ A discretionary bonus typically paid annually

✅ Restricted Stock Units granted at time of hire

✅ 401(k) match and comprehensive employee benefits package

The salary range represents the low and high end of the salary range for this job in the US. Minimums and maximums may vary based on location. The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience and other relevant factors.

Workiva is an Equal Employment Opportunity and Affirmative Action Employer.  We believe that great minds think differently.  We value diversity of backgrounds, beliefs, and interests, and we recognize diversity as an important source of intellectual thought, varied perspective, and innovation.  Employment decisions are made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression genetic information, marital status, citizenship status or any other protected characteristic.  We strongly encourage and welcome people from historically marginalized groups to apply.

Workiva is committed to working with and providing reasonable accommodations to applicants with disabilities. To request assistance with the application process, please email [email protected].
 

Workiva employees are required to undergo comprehensive security and privacy training tailored to their roles, ensuring adherence to company policies and regulatory standards.

Workiva supports employees in working where they work best – either from an office or remotely from any location within their country of employment.

#LI-MJ2