\nTitle: Cybersecurity GRC Manager\n\nLocation: Remote\n\n\nReports to: Chief Information Security Officer (CISO)\n\nJob Purpose: LTK is looking to add a Cybersecurity GRC Manager who can lead our efforts in governance, risk, and compliance responsibilities from a security and technology perspective across the organization. This individual will lead the Security GRC Team and will be directly responsible for implementing, maintaining, and improving policies, procedures, and internal controls to assure compliance with applicable regulatory and legal requirements, as well as best practices.\n\nAs a GRC Manager, you'll be working to improve the Security Risk Management Program and work closely with various teams such as DevOps, Engineering, and Product teams. The GRC manager will oversee global security strategy and programs fostering a culture where security is everyone’s responsibility. The right person for this role will have experience with guidelines, standards and policies across different businesses and industries.High touch, global organization with exposure to IT systems and helping to build the foundation that will drive business transformation.\n\nQualifications: \n\nThe ideal candidate is someone who has:\n\n\n8 + years of IT/Cybersecurity experience in relevant security domains (e.g. compliance, audit, security risk management)\n\n3+ years of Project Management experience\n\nDeep knowledge of and hands-on experience with Amazon Web Services (AWS)\n\n* Created and built a Project Managing IT Governance, Risk, or Compliance (GRC) process from scratch\n\nExperience as the main point of contact for GRC related initiatives and has worked cross-functionally with internal teams: Legal, Privacy, Tech, IT Vendor Management and other business unites\n\n* Direct experience managing SOC2 readiness activities as well as remediation and certification efforts\n\n* Managed compliance initiatives across business units e.g. GDPR, CCPA, PCI, Privacy, Internal/External Audits, 3rd Party Vendor Management and SOC2 \n\n* One or more industry certificates e.g. CISM, CRISC, CISA, CIPM, CISSP\n\n\n\n\nKey Responsibilities:\n\n\nManage the remediation of risks identified through the risk register process and contribute towards improving the overall risk management program. It may include leading annual security assessments, completing written reports of results to be shared with the Executive Leadership Team and other senior leaders.\n\nContinuously improve the Information Security Risk Management Program and oversee a Business Continuity Program\n\nDevelop and maintain all relevant documentation, policies, standards, guidelines and frameworks, embedding controls into processes across the business and technology units.\n\nAssists in the early identification of risk trends by establishing and monitoring key performance and key risk indicators via Risk and Business Impact Assessments.\n\nEducates risk owners on risk management best practices and works with other risk functions (e.g. Internal Audit and Legal) in the development and implementation of risk controls and treatment plans.\n\nLead the security exception process, including leading the completion of security exceptions, tracking and following up on alternative mitigating action items included within approved security exceptions.\n\nManage relationships with key internal stakeholders providing transparency on broader Information Security program’s operational efficiency including timelines and budget\n\nManage the creation of new or leading the maintenance of existing security and privacy policies, standards and specifications to ensure they are current and appropriately aligned with applicable laws, regulations, and the evolution of security risks\n\n* Support the maintenance and build-out of repositories, tools, and documentation for third party risk assurance\n\n\n\n\n \n\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Amazon, Senior, Legal and Non Tech jobs that are similar:\n\n $65,000 — $125,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nDallas, Texas, United States

\nJob ID: 1800266 | Amazon Web Services, Inc.\n\n\nLocation is flexible anywhere in the contiguous United States, however access to a major airport is required for travel purposes.\n\nAre you interested in helping the customers implement innovative cloud computing solutions and solve technical problems? Would you like to do this using the latest cloud computing technologies? Do you have a knack for helping these groups understand application architectures and integration approaches, and the consultative and leadership skills to launch and guide a project to success? Are you familiar with security best practices for applications, servers, and networks? Do you want to be part of the team helping to establish Amazon Web Services (AWS) as a leading technology platform? Be part of our Professional Services team!\n\n\nAmazon Web Services is looking for highly talented and technical architects to help accelerate our growing Professional Services business. This is an excellent opportunity to join Amazon’s world class technical teams, working with some of the best and brightest engineers while also developing your skills and furthering your career within one of the most innovative and progressive technology companies.\n\n\nAWS Professional Services engages in a wide variety of cloud migration and cloud adoption projects for customers and partners, providing collective experience from across the AWS customer base. We’re obsessed about delivering strong success for our Customers - we collaborate across the entire AWS organization to bring access to product and service teams so we deliver the right solution and drive feature innovation based on customer needs.\n\nWe are looking for people that have:\n· A strong understanding of large scale computing solutions across the full enterprise stack. The ideal candidate will be a hands-on technical expert and have past experience working as a consultant. With AWS, you will keep your existing technical skills honed and develop new ones as you lead architecture discussions and proof of concept buildouts for customers. You will regularly take part in deep-dive education and hands-on design exercises to create world-class cloud solutions built on AWS.\n· A background of deep technical expertise supporting customers in at least one of the following enterprise technology areas: server/OS management; network management; cloud migration and deployment; database and middleware management; full lifecycle enterprise software development; DevOps pipeline build and management; storage and virtualization management.\n· An understanding of enterprise software development tools and methodologies, including typical enterprise application architectures and the ability to write basic scripted or compiled code.\n· A mix of advanced technology and strategic business acumen as well as a demonstrated ability to engage in senior level technology decision maker discussions related to the business value of AWS services and offerings.\n· Demonstrated ability to think strategically about business, product, and technical challenges.\n\nOur Consultants work with Federal Government customers in a variety of locations across the US. As such, Consultants must have the ability to travel to client locations to sell and deliver professional services as needed. This can vary depending on the customers supported, 30% to 50% can be typical, sometimes higher during peak times. Please check with the hiring team for more information.\n\nThis position requires the candidate selected be a US citizen because it provides services under a federal government contract and who can obtain and maintain a Public Trust.\n\nInclusive Team Culture\nHere at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have twelve employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon’s culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.\n\nWork/Life Balance\nOur team also puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren’t focused on how many hours you spend at work or online. Instead, we’re happy to offer a flexible schedule so you can have a more productive and well-balanced life—both in and outside of work.\n\nMentorship & Career Growth\nOur team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we’re building an environment that celebrates knowledge sharing and mentorship. We care about your career growth and strive to assign projects based on what will help each team member develop into a better-rounded professional and enable them to take on more complex tasks in the future.\n\n\n\nBASIC QUALIFICATIONS\n\n· 7+ or more years of design/implementation/consulting experience with enterprise technologies in support of distributed applications.\n· 2+ years of hands on AWS services implementation experience\n· Hands-on experience leading the design, development and deployment of business software at scale or current hands on technology infrastructure, network, compute, storage, and virtualization experience\n· Hands-on technical skills in at least one of the following: server/OS management; network management; cloud migration and deployment; database and middleware management; full lifecycle enterprise software development; DevOps pipeline build and management; storage and virtualization management.\n· Demonstrates experience with software development tools and methodologies, including basic ability to write scripted or compiled code.\n· Demonstrates experience presenting technical material to both technical and nontechnical clients.\n· B.S. in Computer Science or Information Systems, or equivalent degree and/or experience.\n\n\n\nPREFERRED QUALIFICATIONS\n\n· AWS Solutions Architect Professional certification or similar Professional certifications\n· Strong track record of implementing AWS services in a variety of distributed computing environments\n· Demonstrates experience in running complex projects.\n· Experience building sophisticated and highly automated infrastructure.\n· High level of skill communicating effectively across internal and external organizations.\n· Demonstrates ability to adapt to new technologies and learn quickly.\n· Demonstrates ability to be comfortable speaking with executives, IT Management, and developers.\n· Demonstrates ability to work in a diverse team\n\nPursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.\n\nPursuant to the Los Angeles Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.\n\nFor employees based in Colorado, this position starts at $125,000 per year. A sign-on bonus and restricted stock units may be provided as part of the compensation package, in addition to a range of medical, financial, and/or other benefits, dependent on the position offered. Amazon is committed to a diverse and inclusive workplace.\n\n#US_WWPS_ProServ #US_WWPS_ProServ_SLGEDU\n\n\nAmazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation, please visit https://www.amazon.jobs/en/disability/us. \n\n#Salary and compensation\n $120,000 — $200,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n
\n\n#Location\nUnited States

\nHi. We’re looking for an awesome Customer Support Specialist to join our growing team. If you’ve ever wanted to work for an interesting security startup with great people this is your chance.\n\nWe strongly believe in 'Hire for attitude, train for skills.' This has worked out really well for us several times. This is an externally facing role so we need to make sure you work well with customers as well as our team here. \n\nWe’re a little different than your average startup so we put together this FAQ.\n\nQ: Ok who are you guys?\n\nA: ThreatSim is comprised of some really smart security hackers who were tired of working for large companies. There are people here from Mitre, HP, Fortify, RSA, Verizon Business, Cybertrust, and others. We wanted to do the small company thing and it’s worked well for us.\n\nQ: What would I be working on?\nA: You’ll be helping our managed services customers configure, launch, and execute their simulated phishing assessments, writing knowledge base articles, and working tickets. ThreatSim, our SaaS service, lets our customers send simulated phishing campaigns against themselves. When the user clicks on the simulated phishing link they are immediately shown training. It’s an unconventional approach to changing user behavior and it works.\n\nEssentially we get to think like bad guys and help our customers improve their security. It’s an interesting space to say the least. If you ever wanted to learn more about security and cutting-edge attacks, this is the place. We simulate evil AND give our customers data that they can use to protect their organization. Your primary focus will be helping our enterprise customers get up and running and help them sorting out any issues they encounter along the way. \n\nAlso, we will sometimes send cakes to customers out of the blue. Why? Because cake in the break room is awesome and our customers deserve it. So you need to be able to order a surprise cake from time to time. \n\nQ: Where is this position located?\nA: This is a remote position that is open to US residents only located within the US. We understand that not every everyone wants to move to SF, NYC, or DC so we let you work wherever you are productive. \n\nQ: What will my day to day be like?\nA: You grab your coffee and commute to your home office (or coffee shop, whatever) in about 30 seconds. There, in the comfort of home, you work your tickets to ensure that ThreatSim customers get the help they need. You keep in touch with the team using HipChat, Skype, Join.me, Google Hangout, and even an ol’ IP phone. Using your company provided Macbook you use ZenDesk, Splunk, and a host of other tools and watch as your friends complain about traffic on Facebook. When you are done for the day you commute home in about 30 seconds. \n\nQ: Who will I be working with?\nA: The Director of Customer Support, the Customer Support Manager, the CTO, developers, devops, sales, and customers. We’re a 15 person company so needless to say you’ll know everyone on a first name basis. \n\nQ: What hours do you work?\nA: We generally work “normal” office hours (9am - 5pm EST).  As our customer base grows beyond the US we will need more coverage beyond “normal” office hours so hours may change. Most of us are on the east coast (DC area) but as long as you are a US citizen, we’re good. We’re a startup, so sometimes there are long hours. But we all have families (some with kids even) so we aim for a good work-life balance. \n\nQ: What technology to you use?\nA: ThreatSim is built entirely within Amazon Web Services. So you will get exposure to some cool cloud technology. Day to day your primary tools will be: ZenDesk, Google Apps, Splunk, SalesForce, Pardot, and some other cool internal tools. \n\nQ: How often do we get together in person?\n\nA: For people local to DC we try to get together for lunch every few weeks. For those that are remote we have a few events every year (company picnic, go-kart racing, paintball, holiday party, etc.) Some of the folks here brew beer so I suspect that they hang out more often. \n\nQ: What benefits do you offer?\nA: The salary is competitive and depends on your experience. We offer the following:\n\n\n* Medical, dental, and vision insurance\n\n* SIMPLE IRA with company match\n\n* 3 weeks PTO for new employees, 4 weeks for employees with us longer than a year.\n\n* 8 federal holidays\n\n* Choose your own laptop\n\n* Cake\n\n\n \n\n#Salary and compensation\n No salary data published by company so we estimated salary based on similar jobs related to Customer Support, Non Tech, Amazon, Cloud and SaaS jobs that are similar:\n\n $70,000 — $110,000/year\n
\n\n#Benefits\n 💰 401(k)\n\n🌎 Distributed team\n\n⏰ Async\n\n🤓 Vision insurance\n\n🦷 Dental insurance\n\n🚑 Medical insurance\n\n🏖 Unlimited vacation\n\n🏖 Paid time off\n\n📆 4 day workweek\n\n💰 401k matching\n\n🏔 Company retreats\n\n🏬 Coworking budget\n\n📚 Learning budget\n\n💪 Free gym membership\n\n🧘 Mental wellness budget\n\n🖥 Home office budget\n\n🥧 Pay in crypto\n\n🥸 Pseudonymous\n\n💰 Profit sharing\n\n💰 Equity compensation\n\n⬜️ No whiteboard interview\n\n👀 No monitoring system\n\n🚫 No politics at work\n\n🎅 We hire old (and young)\n\n