Vacancy expired!
The Rock Family of Companies is made up of nearly 100 separate businesses spanning fintech, sports, entertainment, real estate, startups and more. We’re united by our culture – a drive to find a better way that fuels our commitment to our clients, our community and our team members. We believe in and build inclusive workplaces, where every voice is heard and diverse perspectives are welcomed. Working for a company in the Family is about more than just a job – it’s about having the opportunity to become the best version of yourself.Minimum Qualifications
Bachelor’s degree in computer science, information technology, or a related field or equivalent experience
3 years of experience with information security programs, governance, asset management or data management processes
3 years of experience with one or more security compliance frameworks: AICPA Trust Principals (SSAE 18 - SOC 1 and 2), NIST CSF, ISO 27000 Series, PCI DSS, HIPAA, SOX, SANS CIS Critical Security Controls, regulations governing personally identifiable information (PII) and other regulatory compliance frameworks
3 years of experience with Microsoft Excel, PowerBI, Tableau, Python, R or other data analysis tools
Preferred Qualifications
5 years of experience with information security programs, project or program management, governance, asset management or data management processes
5 years of experience with one or more security compliance frameworks: AICPA Trust Principals (SSAE 18 - SOC 1 and 2), NIST CSF, ISO 27000 Series, PCI DSS, HIPAA, SOX, SANS CIS Critical Security Controls, regulations governing personally identifiable information (PII) and other regulatory compliance frameworks
5 years of experience with Microsoft Excel, PowerBI, Tableau, Python, R or other data analysis tools
Understanding of IT constructs (e.g., servers, networking, operating systems, development, storage, cloud technologies)
Understanding of information security constructs (e.g., encryption, identity and access, risk analysis, threat hunting, vulnerability management, DLP, IDS/IPS, governance, exploitations, threat landscape)
Knowledge of IAM, EC2, S3 Buckets, VPC and Cloudtrail logs
Knowledge of Agile Framework
Proficient with AWS, Azure, and/or GCP
Ability to build deep and influential relationships with audience and business partners
Job SummaryThe Compliance Engineer guides cross-functional teams in the engineering of automated controls and processes that safeguard the data of our businesses, clients and team members both on premise and in the cloud.Responsibilities
Design, implement and execute technical compliance monitoring and remediation processes for on premise and cloud environments
Leverage APIs to connect data from multiple sources to extract and transform data pipelines for analysis
Synthesize large sets of data to draw conclusions and perform data driven decision making
Code sophisticated routines that identify, prevent or respond to compliance issues
Develop processes and cross-functional team relationships to address compliance issues, and influence process and control improvements
Lead technical compliance implementation projects by managing project phases, coordinating and driving communication, facilitating decisions and ensuring follow-through on the execution of projects with internal and external stakeholders to provide timely program deliverables and rapid remediation
Maintain excellent technical documentation within code as well as higher level process flows and narratives for non-technical audiences
Ensure the enterprise is adhering to the standards of the organization's software development life cycle, including the drafting and collection of feedback for detailed design documents
Develop performance dashboard and metrics for regular reporting to all levels of the organization on program status and performance
Continuously identify, assess, advise and prioritize technical risks and opportunities
Advise on complex control and training requirements as needs arise
Simplify constantly at the program level
Mentor junior team members on compliance engineering skills
Who We AreRock Central is a Detroit-based professional services company obsessed with delivering innovative, effective solutions to meet the diverse needs of our clients. From legal and finance to technology and public relations, our expertise spans from executive consulting all the way to tactical implementation. We thrive at the intersection of people, process and technology and empower our partners to unleash the maximum potential of their business through unmatched partnership and the entrepreneurial spirit of a startup. From the smallest venture to the largest enterprises, we believe having an impact is never a question – it’s part of our DNA.DisclaimerThis is an outline of the primary responsibilities of this position. As with everything in life, things change. The tasks and responsibilities can be changed, added to, removed, amended, deleted and modified at any time by the leadership group.The Company is an Equal Employment Opportunity employer, and does not discriminate in any hiring or employment practices. The Company provides reasonable accommodations to qualified individuals with disabilities in accordance with state and federal law. Applicants requiring reasonable accommodation in completing the application and/or participating in the employment application process should notify a representative of the Human Resources Team, The Pulse, at 1-800-411-JOBS.The Rock Family of Companies uses world-class recruiting and talent management teams to help each member organization recruit the best and brightest. If you’re looking for the next step in your career, you’ve come to the right place.
