5,425 Security Awareness Training jobs in the United States

We are in the business of creativity. making some of the most beloved film and television of all time for every platform in the world. As the most creative and proudly independent studio, our future is boundless.

Sony Pictures Entertainment (SPE) is a division of Sony Corporation, a creative entertainment company built on a foundation of technology. Along with our sister companies, we make movies, television, music and games that engage billions of people, connecting creators and audiences around the globe. We are looking for innovators to join us as we forge the future of entertainment!

Summary:

The Analyst plays a pivotal role in advancing Sony Pictures Entertainment's security culture by delivering data-driven insights that inform, validate and improve security culture strategies. This role is responsible for analyzing behavioral data, gathering stakeholder feedback, analyzing program performance metrics and identifying opportunities for improvement. This analyst will work across various data streams, stakeholder feedback, and program performance metrics to provide visibility into the state of security awareness rates, improvement opportunities and escalation timing. They will also be responsible for identifying and recommending new, data-informed paths forward that improve program impact and engagement . Success in this role requires a strong foundation in data analytics, a keen understanding of human behavior in the context of cybersecurity, and the ability to communicate insights clearly through intuitive dashboards and reports. This position supports the broader Information Security mission by ensuring that awareness efforts are measurable, targeted, and continuously evolving to reduce risk and foster a culture of security across the organization.

Purpose :

Drive data-informed decisions for security awareness and culture programs by analyzing user behaviors, surfacing actionable insights, and measuring both qualitative and quantitative impact. In addition to evaluating effectiveness, this role also identifies new directions for strategy, content, or engagement tactics based on observed trends and behavioral insights. This role is critical in validating the effectiveness of experiments and ensuring the team focuses, selects, and prioritizes initiatives that build on a culture of security.

Core Responsibilities

Behavioral Data Analysis & CSTA measurements

• Interprets data from overall learning initiatives and simulations (e.g., click rates, report rates, escalation timing ) .

• Analyzes LMS engagement and outcomes (completion rates, quiz scores, drop-offs).

• Tracks human behavior KPIs and provide insights about potential opportunities ( e.g., MFA use, security reporting, secure browsing habits).

• Designs and analyzes satisfaction and effectiveness surveys for security campaigns , initiatives and trainings .

• Measures learner satisfaction, relevance, and clarity of content delivery.

• Correlate CSAT with behavioral data to determine alignment or misalignment between perception and impact.

• Proactively recommends new paths forward for awareness strategy, engagement, and content direction based on behavioral insights and data trends.

Experimentation & Iteration Validation

• Supports MVP testing by defining success metrics and tracking outcome indicators.

• Designs A/B tests and pilots to compare effectiveness of formats, messages, or tactics.

• Communicates through data /metrics when an experiment should be scaled, refined, or retired.

• Participates in interviews and listening sessions with Lines of Business and internal partners.

• Documents key themes, unmet needs, recurring pain points, and success signals.

• Translates stakeholder insights into hypotheses or targeted focus areas for awareness campaigns.

Strategic Insight & Data-Informed Direction

• Identifies and recommends new, data-informed paths forward for awareness strategy, content, and engagement based on behavioral trends and program insights.

• Connects findings from behavioral data, feedback, and performance metrics to shape future program priorities.

• Helps evolve the security awareness program by translating insights into actionable, forward-looking opportunities.

Vendor & Procurement Support

• Partners with Procurement on vendor reporting, KPIs, QBRs, and platform evaluations.

• Tracks satisfaction and adoption across awareness tools (LMS, phishing platforms, simulation vendors/ tools).

• Aligns vendor performance data with internal cultural and learning metrics.

• Works closely with Director of Information Security Awareness & Training to identify and assess creative, marketing, and video production vendors for awareness campaigns.

  Education Requirement:

Bachelor's in Data Science , Data Analytics, Behavioral Science, Business Administration, Information Security , or a related field? Equivalent experience or certifications (e.g., Tableau, Power BI, SQL, xAPI ) may be considered .

Relevant Experience /Skills

• 1 - 3 years of experience is ideal for this role, particularly in areas such as Data Analytics , Insights & Visualization , Security Awareness or Employee Engagement, and Reporting. Candidates should demonstrate a proven ability to analyze behavioral data, drive cultural change, and create impactful dashboards that provide clear visibility into trends and program effectiveness.

• Coursework or formal training in:

• Data analysis and visualization (e.g., using Power BI, Tableau, Excel, SQL)

• Security awareness programs or training design

• Behavioral analytics or user research

• Statistical methods, experimentation, or A/B testing methodologies

• Proficient in Power BI, Tableau, or Looker Studio; comfortable with Excel and SQL.

• Familiar with xAPI /LRS-based learning analytics, SCORM tracking, and LMS reporting.

• Build clean, user-friendly, intuitive dashboards and scorecards to track cultural maturity and engagement trends.

• Additional ideal c ertifications :

• CompTIA Security+,?Certified Information Systems Security Professional (CISSP)

• Certified Analytics Professional (CAP)

• Certificates in data science tools (Power BI, Tableau, Looker Studio)

• LMS administration certifications?

Ideal Backgrounds Might Include:

• Data analyst with experience in cybersecurity or employee engagement.

• Customer experience analyst who understands satisfaction measurement and behavior analytics.

Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics. To request an accommodation for purposes of participating in the hiring process, you may contact us at

We are in the business of creativity. making some of the most beloved film and television of all time for every platform in the world. As the most creative and proudly independent studio, our future is boundless.
Sony Pictures Entertainment (SPE) is a division of Sony Corporation, a creative entertainment company built on a foundation of technology. Along with our sister companies, we make movies, television, music and games that engage billions of people, connecting creators and audiences around the globe. We are looking for innovators to join us as we forge the future of entertainment!
Summary:
The Analyst plays a pivotal role in advancing Sony Pictures Entertainment's security culture by delivering data-driven insights that inform, validate and improve security culture strategies. This role is responsible for analyzing behavioral data, gathering stakeholder feedback, analyzing program performance metrics and identifying opportunities for improvement. This analyst will work across various data streams, stakeholder feedback, and program performance metrics to provide visibility into the state of security awareness rates, improvement opportunities and escalation timing. They will also be responsible for identifying and recommending new, data-informed paths forward that improve program impact and engagement . Success in this role requires a strong foundation in data analytics, a keen understanding of human behavior in the context of cybersecurity, and the ability to communicate insights clearly through intuitive dashboards and reports. This position supports the broader Information Security mission by ensuring that awareness efforts are measurable, targeted, and continuously evolving to reduce risk and foster a culture of security across the organization.
Purpose :
Drive data-informed decisions for security awareness and culture programs by analyzing user behaviors, surfacing actionable insights, and measuring both qualitative and quantitative impact. In addition to evaluating effectiveness, this role also identifies new directions for strategy, content, or engagement tactics based on observed trends and behavioral insights. This role is critical in validating the effectiveness of experiments and ensuring the team focuses, selects, and prioritizes initiatives that build on a culture of security.
Core Responsibilities
Behavioral Data Analysis & CSTA measurements
+ Interprets data from overall learning initiatives and simulations (e.g., click rates, report rates, escalation timing ) .
+ Analyzes LMS engagement and outcomes (completion rates, quiz scores, drop-offs).
+ Tracks human behavior KPIs and provide insights about potential opportunities ( e.g., MFA use, security reporting, secure browsing habits).
+ Designs and analyzes satisfaction and effectiveness surveys for security campaigns , initiatives and trainings .
+ Measures learner satisfaction, relevance, and clarity of content delivery.
+ Correlate CSAT with behavioral data to determine alignment or misalignment between perception and impact.
+ Proactively recommends new paths forward for awareness strategy, engagement, and content direction based on behavioral insights and data trends.
Experimentation & Iteration Validation
+ Supports MVP testing by defining success metrics and tracking outcome indicators.
+ Designs A/B tests and pilots to compare effectiveness of formats, messages, or tactics.
+ Communicates through data /metrics when an experiment should be scaled, refined, or retired.
+ Participates in interviews and listening sessions with Lines of Business and internal partners.
+ Documents key themes, unmet needs, recurring pain points, and success signals.
+ Translates stakeholder insights into hypotheses or targeted focus areas for awareness campaigns.
Strategic Insight & Data-Informed Direction
+ Identifies and recommends new, data-informed paths forward for awareness strategy, content, and engagement based on behavioral trends and program insights.
+ Connects findings from behavioral data, feedback, and performance metrics to shape future program priorities.
+ Helps evolve the security awareness program by translating insights into actionable, forward-looking opportunities.
Vendor & Procurement Support
+ Partners with Procurement on vendor reporting, KPIs, QBRs, and platform evaluations.
+ Tracks satisfaction and adoption across awareness tools (LMS, phishing platforms, simulation vendors/ tools).
+ Aligns vendor performance data with internal cultural and learning metrics.
+ Works closely with Director of Information Security Awareness & Training to identify and assess creative, marketing, and video production vendors for awareness campaigns.
Education Requirement:
Bachelor's in Data Science , Data Analytics, Behavioral Science, Business Administration, Information Security , or a related field.  Equivalent experience or certifications (e.g., Tableau, Power BI, SQL, xAPI ) may be considered .
Relevant Experience /Skills
+ 1 - 3 years of experience is ideal for this role, particularly in areas such as Data Analytics , Insights & Visualization , Security Awareness or Employee Engagement, and Reporting. Candidates should demonstrate a proven ability to analyze behavioral data, drive cultural change, and create impactful dashboards that provide clear visibility into trends and program effectiveness.
+ Coursework or formal training in:
+ Data analysis and visualization (e.g., using Power BI, Tableau, Excel, SQL)
+ Security awareness programs or training design
+ Behavioral analytics or user research
+ Statistical methods, experimentation, or A/B testing methodologies
+ Proficient in Power BI, Tableau, or Looker Studio; comfortable with Excel and SQL.
+ Familiar with xAPI /LRS-based learning analytics, SCORM tracking, and LMS reporting.
+ Build clean, user-friendly, intuitive dashboards and scorecards to track cultural maturity and engagement trends.
+ Additional ideal c ertifications :
+ CompTIA Security+, Certified Information Systems Security Professional (CISSP)
+ Certified Analytics Professional (CAP)
+ Certificates in data science tools (Power BI, Tableau, Looker Studio)
+ LMS administration certifications 
Ideal Backgrounds Might Include:
+ Data analyst with experience in cybersecurity or employee engagement.
+ Customer experience analyst who understands satisfaction measurement and behavior analytics.
Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics. To request an accommodation for purposes of participating in the hiring process, you may contact us at

Arcosa, Inc. is seeking an Information Security & Compliance Analyst in our Dallas, TX headquarters. Reporting to the Senior Director of Cyber Security and Compliance, the Information Security Compliance Analyst will assist with the coordination and completion of government, regulatory, and compliance documents for Information Technology.

This position will develop and maintain standards, processes, and procedures to assess, monitor, report, escalate, and manage remediation of IT control and compliance related issues. They will work collaboratively with internal audit and technical teams in the design and implementation of IT controls. This role will also generate reports and/or metrics that help track compliance issues identified through the Security & Compliance Assessment process.

Arcosa, Inc. (NYSE: ACA) is a growth-oriented, publicly traded manufacturer and producer of infrastructure-related products and services. The company has businesses with leading positions in construction, energy, and transportation markets.

Responsibilities:

• Documenting, implementing, and assessing policies, processes, and procedures specific to IT compliance for ICFR regulations.
• Actively serves as primary point of contact for internal and external audits and provides IT management direction as to how to remediate pertinent action items.
• Partner with IT control owners in implementing and validating controls for Access Management, Release Management, Change Management and Vendor Management processes to ensure compliance with the IT Frameworks.
• Coordinate with control owners to ensure active management /monitoring of controls are operating effectively and timely.
• Manage annual IT testing for internal and external audits, risk assessments, and regulatory, legal and policy compliance collaborating with our external auditors.
• Assist with the requirements and achievement of appropriate certification programs surrounding information security.
• Facilitate user access reviews, exposure analysis and ensure respective remediation is performed in a timely manner.
• Advise and partner with IT teams on how to effectively comply with IT standards to proactively mitigate risks
• Provide guidance and ensure compliance with any applicable information security standards and regulations for employees, partners, and other third parties.
• Monitor, track and report status of security tasks and open remediation items.
• Manage Data Protection Program and ensure access to sensitive data is appropriately authorized.
• Evaluate control effectiveness of internal and external risk assessments.
• Develop procedures to support security related activities.
• Manage Third Party Risk Management program and ensure third party security risks are measured and monitored.
• Additional responsibilities as needed.

Requirements:

• Bachelor's degree in Business Administration, Accounting, Information Systems or related field preferred
• 7 plus years of experience in IT audit with information security background
• Demonstrated experience maintaining and updating policies and procedures
• Demonstrated knowledge of information security standards and methodologies with general understanding of security processes, tools and latest technologies
• Knowledge of PCI, SOC1 and 2, ISO, COBIT, SOX GCC, ITIL, HIPPA, Privacy Acts, and other IT compliance frameworks
  CISA or CIA certified candidates preferred
• Advance knowledge in Information Security Technologies
• Strong verbal and written communication skills
• Ability to work with minimal supervision, balancing a mix of resources, due dates and requirements.
• Detail-oriented with strong adaptability and capacity to work in fast-paced environments

Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.

Tactibit Technologies provides innovative information technology, cybersecurity, and cloud support services to the Federal Government. We support some of the nation's most critical and demanding projects including satellite operations, critical infrastructure, and search and rescue. We are a diverse team of hands-on professionals dedicated to solving problems and developing innovative solutions in support of our customers' critical missions. Our success is dependent on our inclusive, collaborative environment with a shared commitment to excellence in everything we do.

About the Information Security Compliance Specialist position

We are looking for a talented cybersecurity professional to join our team in Suitland, MD. You will provide information security support for NOAA's satellite operations missions. You will help develop and maintain effective security and risk management programs on complex government information systems. As an Information Security Compliance Specialist, you will be expected to document security control implementations, maintain a variety of security documents, and monitor the effectiveness of the overall security program.

We expect you to have a passion for cybersecurity and attention to detail. You should have a desire to work with satellite data and products for the public and government. Besides, you should be able to perform well working in a team, along with system administrators, engineers and scientists.

This position is located at a government facility in Suitland, MD. The position is eligible for a flexible work arrangement.

Information Security Compliance Specialist responsibilities are:

• Provide overall cybersecurity program support to the Information System Security Officer (ISSO) and System Owner (SO)
• Provide security documentation support including documenting the implementation details of security controls in System Security Plans
• Identify and recommend technical or policy changes to improve security
• Plan, coordinate, and review technical artifacts to demonstrate the effectiveness of security controls
• Support security control assessments, penetration tests, and similar testing efforts by coordinating with stakeholders, communicating project plans, and providing guidance to technical and non-technical staff
• Write and maintain core security documentation including System Security Plans and Contingency Plans
• Plan, manage, and oversee Plans of Actions and Milestone (POA&Ms)
• Coordinate security efforts and improvements with stakeholders including system administrators and operations teams
• Monitor and report on vulnerability management program effectiveness including vulnerability scanning and patch management
• Coordinate responses to data calls, audits, and other external requests
• Coordinate security assessment efforts including Security Controls Assessments (SCAs), penetration testing, and risk assessments
• Plan, manage, and coordinate annual system assessment and authorization activities, to include continuous monitoring

Information Security Compliance Specialist requirements are:

• 3+ years of cybersecurity experience
• Experience with Federal government environments and concepts including NIST Risk Management Framework, NIST SP 800-53 security controls, and DISA Security Technical Implementation Guides (STIGs)
• Strong problem solving skills and ability to work under pressure
• Strong written and verbal communication skills
• Ability to understand and explain complex security concepts and requirements to a variety of technical and non-technical personnel
• BS degree in Computer Science, Cybersecurity, or other related area
• Must be a US Citizen and eligible to obtain a security clearance

Desired Qualifications are:

• Experience with government security assessment and management tools such as CSAM
• Experience with the NIST Risk Management Framework
• Experience with issue tracking and configuration management systems and processes
• Industry certifications such as CISSP, GIAC certifications, Security+, and others
• Experience with vulnerability management tools including Tenable Nessus
• Experience with continuous monitoring and log management tools including ArcSight, BigFix, ePolicy Orchestrator, and similar tools
• Active Secret security clearance

Description

Title: Information Security Compliance Lead
Location: Washington, DC
Terms: Full-Time
Clearance: Must be a US Citizen with an ability to obtain a high-level Public Trust
Travel: 0-10%

RESULTS. INNOVATION. VALUES. ACCOUNTABILITY.

That's RIVA. Our employee-first approach has cultivated a culture that attracts the best and brightest. By investing in people first and providing a flexible work environment, our employees experience higher morale, increased productivity, and lower turnover. At RIVA, people are our #1 priority.

Program Overview:

The International Trade Administration (ITA) Office of the Chief Information Officer (OCIO) Customer Relationship Division (CRD) supports the strategic delivery of digital solutions, enterprise services, and technology alignment across ITA's global footprint. The CRD plays a critical role in improving customer engagement, optimizing business processes, and enhancing digital service offerings. This project advances ITA's modernization initiatives by delivering program management, process reengineering, customer experience analysis, and technical documentation services to streamline enterprise IT support and align service delivery with mission goals.

As part of this effort, RIVA supports ITA OCIO in enhancing internal service delivery frameworks, implementing performance metrics, and ensuring the seamless execution of IT modernization initiatives through collaborative project execution, robust documentation, and stakeholder communication.

Position Overview:

RIVA Solutions is seeking an experienced FISMA Compliance Lead to oversee and ensure compliance with federal cybersecurity standards and frameworks, including FISMA and FedRAMP. This role requires advanced knowledge of federal compliance requirements, hands-on expertise in security documentation, and strong coordination across teams and government stakeholders. The FISMA Compliance Lead will be a key liaison between the Department of Commerce (DOC) and ITA for all compliance-related reporting and data calls.

Core Responsibilities:

• Provide leadership and oversight of FISMA compliance staff, including assessment and production of security documentation.
• Maintain current knowledge of FedRAMP processes, features, and evolving federal compliance requirements.
• Manage quarterly FISMA reporting for each fiscal year and coordinate data collection from multiple teams.
• Serve as primary liaison between DOC and ITA for FISMA requirements, reporting, and data calls.
• Communicate regularly with government POCs and compliance team members on FISMA metric statuses.
• Attend recurring government meetings, including Contractor Status, ITA Data Call, and FISMA Performance Improvement Working Group sessions.
• Monitor CSAM status, track FISMA data collection, and generate reports to assess compliance posture.
• Oversee supply chain risk assessments and ensure alignment with federal cybersecurity standards.

Minimum Qualifications:

• Bachelor's degree or higher in Cybersecurity, Information Systems, or a related field.
• 10+ years of experience performing federal government FISMA compliance activities.
• Knowledge of FedRAMP frameworks and reporting requirements.
• Strong communication skills for interacting with senior government stakeholders.
• U.S. Citizenship and ability to obtain a Public Trust clearance (Secret preferred).

Preferred Qualifications:

• Project Management or Agile experience.
• ISC2 Certified in Governance, Risk, and Compliance (CGRC), Certified Cloud Security Professional (CCSP), or Certified Information Systems Security Professional (CISSP) certification.
• Experience supporting Department of Commerce or similar federal agencies.

Salary: Up to $165,000/ yr based on experience

RIVA Benefits:

• Paid Time Off / Sick Leave
• Health, Dental, and Vision Coverage
• Life Insurance
• Retirement Benefits / 401K with Company Matching
• HSA/FSA Spending Accounts
• Long- and Short-Term Disability
• Pet Insurance
• Wellness Program Initiatives
• RIVA Flex
• Additional Workplace Benefits

RIVA Solutions is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any protected class. If you need a reasonable accommodation to search for a job opening or to submit an online application, please email (email protected). Only messages left for this purpose will be returned.

Job Description

Job Description

Position Summary

This is a FULL-TIME, onsite position located in Omaha, NE. Active SECRET government security clearance required at the time of application.

NCC is seeking an Information Security Compliance Specialist for an upcoming contract.

Key Areas of Responsibility

• Planning: Cyber Operational Readiness Assessment Planning (CORA) consisting of the following:
  • Testing and analysis of all applicable STIGs.
  • Scheduling and implementation of all applicable STIGs.
  • Monitoring and execution of the quarterly revalidation schedule.
  • Monitoring emerging changes to the applicable STIGs outside of the quarterly schedules. (CDRL A003).
  • Meeting Support: The contractor personnel shall support the following: (a) briefing 557 WW leadership on Cyber Security updates; (b) preparing biweekly Cyber Security Update meetings; (c) meeting with stakeholders to facilitate Cyber Security collaboration and (d) obtaining input from stakeholders to present to 557 WW leadership. (CDRL A002, A003, A005).
  • Monitoring the cybersecurity risk and threat to the 557 WW’s cyber environment.
  • Assisting with the implementation plans for the 557 WW’s transition to a cloud environment.

Minimum Qualifications

• Active Secret Government Security Clearance.
• 5 years of relevant experience in Cyber Security and system accreditation.
• Experience in the following:
  • Endpoint Security
  • Assured Compliance Assurance Solutions (ACAS)
  • Threat hunting and risk analysis
  • Intrusion Detection Systems
  • DISA STIGS
• IAT Level II Certification

Preferred Qualifications

• Bachelors Degree in relevant field.

NCC provides reasonable accommodations to qualified individuals with disabilities. If you are an applicant that requires a reasonable accommodation, please email us. Please reference the position in your email.

NCC is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, ancestry, color, sex, religion, creed, age, national origin, citizenship status, disability, medical condition, military and veteran status, marital status, sexual orientation or perceived sexual orientation, gender, gender identity, and gender expression, familial status, political affiliation, genetic information, or any other legally protected status or characteristic. E-Verify Employer. VEVRAA Federal Contractor.

Who We Are

Through our service brands Hyundai Motor Finance, Genesis Finance, and Kia Finance, Hyundai Capital America offers a wide range of financial products tailored to meet the needs of Hyundai, Genesis, and Kia customers and dealerships.  We provide vehicle financing, leasing, subscription, and insurance solutions to over 2 million consumers and businesses. Embodying our commitment to grow, innovate, and diversify, we strive to reimagine the customer and dealer experience and launch innovative new products that broaden our market reach. We believe that success comes from within and are proud to support our team members through skill development and career advancement. Hyundai Capital America is an Equal Opportunity Employer committed to creating a diverse and inclusive culture for our workforce. We are a values-driven company dedicated to supporting both internal and external communities through volunteering, philanthropy, and the empowerment of our Employee Resource Groups. Together, we strive to be the leader in financing freedom of movement.

We Take Care of Our People

Along with competitive pay, as an employee of HCA, you are eligible for the following benefits:

·    Medical, Dental and Vision plans that include no-cost and low-cost plan options

·    Immediate 401(k) matching and vesting

·    Vehicle purchase and lease discounts plus monthly vehicle allowances

·    Paid Volunteer Time Off with company donation to a charity of your choice

·    Tuition reimbursement

What to Expect

The Sr. Information Security Compliance Manager will lead and act as the key point of contact regarding Korean SOX (KSOX) activity for Information Protection Department (IPD). In addition, this role is responsible to develop, manage, and support internal/external risk assessment programs, policy exceptions, and audit remediation execution and align IPD risk management activities with business objectives and risk tolerance; identify and mitigate potential risks through threat analysis; and supports initiatives for HCA global standards and compliance.

What You Will Do

1.    Manage the execution of IPD KSOX Test of Design (TOD) and Test of Effectiveness (TOE) Project Plans. Evaluate Test documentation & conclusion, and document test results in a testing template.

2.    Ensure IPD process and/or control is accurate, and report exceptions to IPD Control Owner for further actions.  Update the IPD Risk Control Matrix (RCM) for new control information. Regularly perform KSOX Control Attestation with documentation of accurate controls.

3.    Report exceptions or control gaps noted in testing to IPD control owner for further actions. Submit IPD self-report status on regular basis. Track exceptions, gap, or deficiencies & document all remediation plans using Gap Self-Reporting template per KSOX Office assigned deadlines.

4.    Work with KSOX Office as IPD key contact for external auditor testing, coordinate to determine remediation plans as required. Incorporate guidance from KSOX Office into tests or gap remediation plans.

5.    Assist with the execution of Information Security Risk Management initiatives (including IT Operation Risk Assessments, IT System Risk Assessments, Cloud Application Risk Assessments, and Vulnerability Risk Assessments).

Company Overview

At Motorola Solutions, we believe that everything starts with our people. Were a global close-knit community, united by the relentless pursuit to help keep people safer everywhere. Our critical communications, video security and command center technologies support public safety agencies and enterprises alike, enabling the coordination thats critical for safer communities, safer schools, safer hospitals and safer businesses. Connect with a career that matters, and help us build a safer future.

Department Overview Motorola's Access Control Division's (previously OpenPath) mission is to improve your workday with smart office technology at your front door. We are looking for candidates who can help us build, scale and innovate as we develop our industry leading platform for access control and office automation. Strong analytical and software skills are a must in order to join our team, and we are particularly seeking candidates with experience and skills in multiple technologies, in order to contribute broadly to our team-centric approach to product development.
Job Description

The Senior Information Security Compliance Analyst is a key member of the VS&A Information Security team, responsible for ensuring the organization maintains compliance with applicable regulatory, statutory, and contractual requirements, as well as internal security policies and standards. The role involves conducting assessments, monitoring compliance efforts, managing risk, and providing expert guidance to stakeholders to ensure the organizations information security posture aligns with industry best practices and frameworks. The ideal candidate will have a strong understanding of compliance frameworks, excellent analytical skills, and the ability to communicate effectively with both technical and non-technical stakeholders.

Key Responsibilities:

Compliance Management:

• Ensure the organization complies with relevant regulatory requirements (e.g., GDPR, HIPAA, CCPA/CPRA) and industry standards (e.g., ISO 27001, SOC 2, NIST CSF, PCI DSS).
• Develop, implement, and maintain information security policies, standards, and guidelines.
• Conduct regular audits and assessments to identify gaps and ensure adherence to compliance frameworks.

Risk Assessment and Mitigation:

• Participate in risk assessments to evaluate potential security threats and vulnerabilities.
• Collaborate with cross-functional teams to remediate compliance gaps and reduce risks.
• Track and manage risk exceptions, ensuring appropriate documentation and approvals.

Audit Support:

• Act as the primary liaison for internal and external audits, including regulatory audits, client security assessments, and third-party audits.
• Prepare and provide evidence to demonstrate compliance with applicable standards and requirements.
• Monitor and track the completion of audit findings and corrective actions.

Continuous Improvement:

• Stay up to date with changes in regulatory and compliance requirements, as well as industry trends.
• Recommend and implement improvements to the compliance program to address evolving risks and requirements.
• Participate in the development and enhancement of security and compliance tools, processes, and frameworks.

Preferred Knowledge:

• Understanding of EU and UK compliance regulations, laws and frameworks.

Qualifications:

Education and Experience:

• Bachelors degree in Information Security, Computer Science, Information Technology, or a related field; or equivalent work experience.
• 5+ years of experience in information security, compliance, or related roles.
• Experience working with regulatory requirements and industry frameworks (e.g., GDPR, HIPAA, ISO 27001, NIST, SOC 2, PCI DSS).

Technical Skills:

• Strong understanding of risk assessment methodologies, control frameworks, and compliance requirements.
• Hands-on experience with compliance management tools and GRC platforms.
• Proficiency in participating in audits and managing remediation plans.
• Familiarity with cloud security and third-party risk management.
• Comfortable using AI tools for compliance efforts

Certifications (Preferred):

• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)

Target Base Salary Range: $100,000 - $150,000

Consistent with Motorola Solutions values and applicable law, we provide the following information to promote pay transparency and equity. Pay within this range varies and depends on job-related knowledge, skills, and experience. The actual offer will be based on the individual candidate.

#LI-CA1

Basic Requirements

• Bachelors Degree
• 5+ years of experience in information security, compliance, or related roles
• Legal authorization to work in the U.S. indefinitely is required. Employer work permit sponsorship is not available for this position

Travel RequirementsUnder 10%
Relocation ProvidedNone
Position TypeExperienced
Referral Payment PlanNo

Our U.S.Benefitsinclude:

• Incentive Bonus Plans
• Medical, Dental, Visionbenefits
• 401K
• 10 Paid Holidays
• GenerousPaidTime Off Packages
• Employee Stock Purchase Plan
• PaidParental & Family Leave
• and more!

EEO Statement

Motorola Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion or belief, sex, sexual orientation, gender identity, national origin, disability, veteran status or any other legally-protected characteristic.

We are proud of our people-first and community-focused culture, empowering every Motorolan to be their most authentic self and to do their best work to deliver on the promise of a safer world. If youd like to join our team but feel that you dont quite meet all of the preferred skills, wed still love to hear why you think youd be a great addition to our team.

Were committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. To request an accommodation, please complete thisReasonable Accommodations Formso we can assist you.

#J-18808-Ljbffr

As a Principal Information Security Compliance Analyst at Deluxe, you will play a crucial role in ensuring our organization meets and maintains the highest standards of security and compliance. We are seeking a detail-oriented and proactive individual to assist in internal and external risk and compliance audits, including PCI DSS, SOC 1/ 2, Sarbanes-Oxley, NIST CSF. Who will have significant experience and will be responsible for managing larger projects and mentoring junior staff.

Job Functions

• Ensure framework alignment with industry standards and regulatory requirements (NIST, ISO 27001, PCI-DSS, SOC 1/2, SOX). Lead strategic initiatives to enhance security and compliance. Develop and implement long-term risk and compliance strategies.

• Design and implement a comprehensive and tailored audit or assessment framework. Develop and maintain audit methodologies, tools, and processes. Engage stakeholders to integrate audit findings into the organization's strategic planning.

• Provide strategic compliance guidance to senior management. Lead the development and execution of comprehensive compliance training programs, policies and procedures.

• Review compliance assessments and validate mitigation strategies. Present findings and recommendations to senior management and stakeholders. Ensure evidence complies with security standards, controls, and regulations. Continuously monitor and report on the progress of mitigation efforts.

• Ensure ongoing compliance by staying current with regulations and industry best practices. Support the development of security and compliance policies. Assist with special projects in a dynamic, fast-paced environment.

Basic Qualifications:

• Bachelor's Degree in Information Security, Computer Science, Business or similar field

• 8 years of experience in Compliance frameworks and regulations

• Professional certifications such as PCI ISA, CISSP, CISA, CRISC

Preferred Qualifications:

• 9 years of experience in Compliance frameworks and regulations

• Professional certifications such as CISM, CIPP, CDSPE, CCSP, CGEIT.

• Proven capacity to lead large, cross-functional teams to drive organizational change.

• Proven capacity to execute long-term strategies aligned with organizational goals, while adapting to global market trends and challenges.

• Ability to effectively communicate complex ideas to senior management and stakeholders in high-stakes situations, and influence stakeholders at all levels, including board members and external partners.

• Demonstrated expertise in delivering measurable outcomes, drive performance improvements and lead large-scale transformation initiatives.

• Demonstrated ability to identify and mitigate complex risks that could impact the organization's strategic objectives and ensure success in a rapidly changing environment.

Benefits

In line with our commitment to employee wellbeing, our total rewards benefits package is designed to support the physical, financial, and emotional health of our employees, tailored to meet their unique and evolving needs. Our approach considers our employees' whole selves, ensuring they can thrive both in and outside of work. Here are some of the benefits we offer, which may vary based on role, location, or hours worked:

• Healthcare (Medical, Dental, Vision)

• Paid Time Off, Volunteer Time Off, and Holidays

• Employer-Matched Retirement Plan

• Employee Stock Purchase Plan

• Short-Term and Long-Term Disability

• Infertility Treatment, Adoption and Surrogacy Assistance

• Tuition Reimbursement

These benefits are designed to enhance the health, protect the financial security, and provide peace of mind to our employees and their families.

Deluxe Corporation is an Equal Employment Opportunity employer: All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, disability, sex, age, ethnic or national origin, marital status, sexual orientation, gender identity or presentation, pregnancy, genetics, veteran status or any other status protected by state or federal law.

Please view the electronic EEO is the Law Poster ( which serves to inform you of your equal employment opportunity protections as part of the application process.

Reasonable Accommodation for Job Seekers with a Disability: If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to .