Security & Compliance Programs Manager
Product – Program Management /
AttackIQ is an innovative cybersecurity company, and the leading independent vendor of breach and attack simulation solutions. We built the industry’s first Security Optimization Platform, and we take pride in our mission to help make the world safe for compute. As a team, we cherish curiosity and value camaraderie. We show respect for new ideas as well as the faces behind them. We’re transparent and push one another to constantly improve. Most of all, we enjoy what we do.
AttackIQ is seeking a Security & Compliance Program Manager to lead program management of all initiatives at AttackIQ, primarily around programs related to compliance (I.e.SOC2, GDPR, ISO, FedRAMP), sales support, operations, other engineering process initiatives, as well as product management and project management of shipping/supporting the AttackIQ platform and service offerings. You will play a key part with a lean team, interacting frequently with global stakeholders across the United States, Europe, and Argentina, making a difference across cross-functional departments – especially for compliance and presales efforts (specifically customer security requests for information).
In this role, you will lead and/or assist in responses for customer security RFIs (Requests for Information), maintain compliance security posture to proactively prepare for annual SOC2 compliance audits as well as any future compliance initiatives and audits, support the product team with inbound triage of support tickets on an as-needed basis, administrate operations security scans, perform vulnerability patching, and contribute to interesting, versatile, and unique projects, such as internal security training, product ownership, Agile platform development, new tools and process implementations, and take on the role of Product Owner/Scrum Master to develop and ship new features/capabilities for our platform.
If you’re the right person for this role you imbue a ‘people-first’ mentality and a #OneTeam spirit. You have a track record of success partnering directly with engineering and operations teams as a project/program manager. You believe in doing the right thing and thrive in a super productive and immersive team culture. You naturally support your colleagues and have an innate curiosity and drive to learn and see how something works. You are a proactive critical thinker and inquisitive problem solver, someone who enjoys building new things looking for a professional adventure. You possess excellent communications skills and are comfortable interacting with peers and executives in a team setting. You are a self-starter and thrive in a dynamic, remote environment.
This is a full-time, individual contributor, direct-hire position with AttackIQ. It is a 100% Work From Home (WFH) role, and no travel is required. You must be located in Argentina currently to be considered. We offer a competitive rewards package for full-time employees. We’ll only be able to respond to applicants who meet the basic qualifications for this role.
- 1+ years of client-facing experience responding to RFPs (Request for Proposals) for prospective customers.
- Proven experience defending an enterprise software organization, including conducting risk assessment, disaster recovery exercises, testing incident response plans, and authoring policy.
- Demonstrated experience as a Scrum Master and/or Product Owner in a startup environment, delivering both cloud and on-premise software products.
- 1+ years of experience with one or more Federal Security frameworks: FedRAMP, FISMA, RMF, DIACAP and NIST SP 800 series and NIST SP 800-53, OCII, GDPR, CCPA, and/or Sarbanes Oxley.
- Prior experience with Drata, GRC (Governance, Risk and Compliance) tool implementation, and/or compliance exchanges.
AttackIQ provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, or genetics.