Security Compliance Specialist

Vintti is a staffing agency dedicated to boosting the economic efficiency of US companies. We provide access to a diverse range of skilled Latin American professionals, allowing businesses to build robust teams without the traditional high costs associated with domestic hiring. Our model supports companies in maximizing their resources, driving innovation, and achieving sustainable growth.

A Security Compliance Specialist is responsible for ensuring that an organization's operations and procedures adhere to established security standards, regulations, and best practices. This role involves continuous monitoring of safety protocols, conducting risk assessments, and implementing policies to safeguard sensitive information and assets. By working closely with various departments, the Security Compliance Specialist helps to identify vulnerabilities, manage compliance audits, and provide recommendations for corrective actions. Their expertise is vital in maintaining the company's integrity and trustworthiness in handling confidential data and mitigating potential security threats.

- Bachelor's degree in Information Security, Computer Science, Information Technology, or a related field.
- Professional certifications such as CISSP, CISM, CISA, or other relevant credentials.
- Proven experience in a security compliance role, preferably within the same or a similar industry.
- Strong knowledge of industry-specific regulations and standards (e.g., GDPR, HIPAA, PCI DSS, ISO 27001).
- Experience conducting audits, risk assessments, and vulnerability assessments.
- Excellent understanding of security policies, procedures, and controls.
- Familiarity with security tools and technologies (e.g., SIEM, DLP, IAM).
- Proficient in documenting compliance activities, including audits and investigations.
- Ability to prepare and deliver comprehensive compliance reports.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Experience coordinating with internal and external stakeholders.
- Strong attention to detail and organizational skills.
- Ability to stay current with changes in compliance regulations and best practices.
- Experience developing and delivering training programs on compliance and security best practices.
- Ability to handle and respond to security incidents and breaches effectively.
- Familiarity with disaster recovery and incident response planning.
- Experience with vendor risk assessments and third-party compliance management.
- Working knowledge of IT and legal requirements related to security compliance.
- Strong ethical standards and integrity in handling sensitive information.

- Monitor and assess compliance with industry-specific regulations and standards.
- Conduct audits and risk assessments to identify vulnerabilities and recommend corrective actions.
- Develop, implement, and update security policies, procedures, and controls.
- Coordinate with stakeholders to address compliance issues and requirements.
- Prepare and deliver reports on compliance status, audit findings, and risk assessments.
- Train and educate staff on compliance obligations and security best practices.
- Investigate and respond to security incidents, breaches, and violations.
- Maintain documentation of compliance activities, including audits, inspections, and investigations.
- Perform continuous monitoring and analysis of security systems and protocols.
- Collaborate with IT and legal departments to support regulatory examinations and internal audits.
- Evaluate and implement security tools and technologies for compliance.
- Stay current with changes in compliance regulations, standards, and best practices.
- Participate in the development of disaster recovery and incident response plans.
- Conduct vendor risk assessments for third-party compliance with security policies.
- Assist in the preparation and submission of regulatory filings and documentation.

The ideal candidate for the Security Compliance Specialist role will possess a bachelor's degree in Information Security, Computer Science, Information Technology, or a related field, alongside professional certifications such as CISSP, CISM, or CISA, evidencing their dedication and expertise in security compliance. They will have extensive experience in similar roles, showcasing a deep understanding of industry-specific regulations and standards like GDPR, HIPAA, PCI DSS, and ISO 27001. With a proven track record of conducting audits, risk assessments, and addressing vulnerabilities, they excel in developing, implementing, and refining security policies and controls. This individual is adept at using a range of security tools and technologies, including SIEM, DLP, and IAM solutions, and is proficient in documenting compliance activities and formulating thorough reports. Demonstrating strong analytical and problem-solving abilities, they communicate effectively and work collaboratively with internal and external stakeholders, including IT and legal departments. They remain proactive and adaptable amid regulatory changes, continually updating their knowledge and practices. Ethical, detail-oriented, and meticulously organized, this candidate handles and responds to security incidents with composure and precision. They bring strong leadership and training skills, with the capacity to educate staff on compliance best practices and manage vendor risk assessments. Equipped with strategic foresight and the ability to manage multiple projects concurrently, they exemplify resilience and integrity, making them a standout choice for ensuring our organization's security compliance.

- Monitor and assess the organization's compliance with industry-specific regulations and standards.
- Conduct regular audits and risk assessments to identify vulnerabilities and recommend corrective actions.
- Develop, implement, and update security policies, procedures, and controls in alignment with regulatory requirements.
- Coordinate with internal and external stakeholders to address compliance issues and requirements.
- Prepare and deliver reports on compliance status, audit findings, and risk assessments to senior management.
- Train and educate staff on compliance obligations and security best practices.
- Investigate and respond to security incidents, breaches, and violations.
- Maintain documentation of compliance activities, including audits, inspections, and investigations.
- Perform continuous monitoring and analysis of security systems and protocols to ensure ongoing compliance.
- Collaborate with IT and legal departments to support regulatory examinations and internal audits.
- Evaluate and implement security tools and technologies that enhance compliance efforts.
- Stay current with changes in compliance regulations, standards, and best practices.
- Participate in the development of disaster recovery and incident response plans.
- Conduct vendor risk assessments to ensure third-party compliance with security policies and requirements.
- Assist in the preparation and submission of regulatory filings and documentation.

- Detail-oriented and precise in monitoring and documentation
- Strong analytical and critical-thinking abilities
- Effective communicator with excellent interpersonal skills
- Proactive in staying up-to-date with regulatory changes
- Demonstrated problem-solving skills under pressure
- High ethical standards and integrity
- Strong organizational and multitasking capabilities
- Collaborative mindset, able to work well with cross-functional teams
- Self-motivated and able to work independently
- Quick learner with adaptability to new tools and technologies
- Resilient and composed in managing security incidents and breaches
- Strong leadership and training skills
- Strategic thinker with an ability to foresee potential compliance issues
- Patient and diligent in investigating compliance violations
- Competent in managing multiple projects and deadlines simultaneously

- Competitive salary range ($80,000 - $120,000 per annum, based on experience)
- Comprehensive health, dental, and vision insurance
- Retirement savings plan with company match
- Generous paid time off (PTO) and holidays
- Flexible work hours and remote work options
- Professional development and certification reimbursement
- Opportunities for career growth and advancement within the organization
- Employee wellness programs
- Access to cutting-edge security tools and technologies
- Collaborative and inclusive work environment
- On-site gym and recreational facilities (if applicable)
- Company-sponsored events and team-building activities
- Employee assistance programs (EAP)
- Life and disability insurance
- Commuter benefits and transportation assistance
- Tuition assistance for further education and training
- Recognition and reward programs for outstanding performance