logo inner

Information Security Assessor

RSI SecurityWorldwideRemote

THIS IS A REMOTE, WORK-FROM-HOME POSITION.


RSI Security is a small organization where collaboration is not only encouraged, but expected. We value relationships within our team and are intentional to build and maintain a strong team camaraderie through virtual happy hours, daily morning meetings to help us start off on the right foot, and meetings dedicated solely to professional development topics to help us develop and grow together.As the Information Security Assessor, you will work closely with clients to assess and validate a variety of organizations security controls and regulatory compliance as well as provide advisory support and recommendations on how to remediate possible gaps and issues to meet compliance and regulatory standards. This role will have the opportunity to lead clients engagements as well as contribute to internal process improvements to provide the team with the best resources and structure to delight our clients. The ideal person for this role is self-motivated, is energized by continuously learning and the fast paced world of cyber security, and believes that the ultimate way to care for their colleagues and clients is to be an active listener, exhibit compassion and also provide transparent and actionable feedback and insights with the highest level of attention to detail and review.

What are the 5 most important abilities/functions needed to accomplish?

  • Assess the security controls and regulatory compliance of a client organization (~50% of the time) – By properly scoping and understanding the client environment, business processes, people and technologies, determining compliance requirements and then assessing if the client organization can demonstrate the compliance through clear evidence that is observed, reviewed and tested. Afterwards, drafts a compliance report that outlines how the company has met compliance requirements for the company’s applicable regulations.
  • Act as an advisor to a client organization in preparation for an assessment (~25% of the time) – Guiding the client to properly prepare for controls and/or compliance audit through proper scoping and identifying sensitive data, how it is managed, determine what the requirements are needed to implement controls, perform gap analysis and generate a report outlining action items to take and policies to develop to be ready for an assessment.
  • Provide technical writing to a client organization (~5% of the time) – Leads, contributes and delegates technical writing for a client who does not have policies and procedures created to meet compliance requirements. Reviews work and provides feedback if the work is delegated to an Analyst and finalizes to share with the client. 
  • Partner with the Sales and Marketing team (~10% of the time) – Provides pre-sales meeting support and helps the sales team to create proposals for a client by understanding the client’s business, security requirements, regulatory requirements, and identify complexities. Contributes to marketing efforts, including sitting on a panel as part of a webinar and writing blogs on relevant subjects. 
  • Contribute to internal process improvements & Continuous education (~10% of the time) – Is an active contributor to internal project tasks at RSI, providing improvements to processes to maintain the highest level of efficiency and help productize RSI’s services. Stays abreast of the latest cyber security and compliance changes with 40 hours per year of CPE.
    • Attributes and behaviors necessary to do a great job?

    • Is a trusted advisor and consultant to their clients, who approaches engagements and issues with a balance of logically analyzing the possibilities and potential issues to make thoughtful and insightful decisions and recommendations. Doesn’t jump to conclusions, isn’t grounded to any one idea, and always seeks input from others and stays on top of the latest technology advancements and marry that with RSI Security’s approach and process.
    • Learning is a lifestyle, understanding that technology constantly evolves and is hungry and thirsty to learn new changes and new knowledge as the landscape of security threats changes so quickly. Is not afraid to step outside of their comfort zone and learn new systems, techniques, tools and processes.
    • Excellent communication skills including written and verbal, with strong interpersonal skills, who can build trust and credibility with clients and their teams. Is a good active listener to make sure what was said and what was heard are aligned.
    • Expresses emotional intelligence by communicating empathetically and connects easily with others. Approaches clients with compassion about the challenges or stress they are going through and has a quiet confidence when approaching situations but also knows seeking different perspectives and ideas is the key to a well rounded decision making process.
    • Skilled team player who understands the importance of collaboration and enjoys brainstorming with colleagues and team members for maximized success.
    • Impeccable attention to detail and understands that small oversights can results in big breakdowns or problems down the road. 
    • Self motivation, where quality is paramount with a high degree of accountability and high sense of urgency to drive things forward.

    Essential skills & experience required? What are preferred?

    • Bachelor’s degree in Computer Science or equivalent education required
    • Completion of training in the following areas - Google, AWS, Azure required
    • 5+ years of IT experience total required; having 3+ years’ experience specifically in cyber security required 
    •  At least 2 active certifications; CISA, CISM and CISSP required
    • At least 1 active Qualified Security Assessor certification; HITRUST or PCIDSS QSA preferred but not required
    • Demonstrated ability to interface and collaborate with executive leadership required
    • Demonstrated ability to lead complex projects and engagements and get consistent on-time results that meet expectations required
    • Demonstrated strong interpersonal and communication skills to develop and maintain relationships with clientsand colleagues required
    • Working technical knowledge of software development, cloud computing and network architecture required
    • Intermediate to advanced working skills with various office equipment, computers and various programs including MS Word, PowerPoint, Excel required 
    • Experience working with a PSA tool, such as Asana, Oracle NetSuite, Mavenlink, or Sage preferred
    • Experience with Google Office Suite a plus

    Position Type/Expected Hours of Work:


    This is a full-time, salaried position, and regular hours of work and days to be worked are Monday through Friday, 8:00 a.m. to 5 p.m. PST

    Life at RSI Security

    We Live and Breathe Cybersecurity. RSI Security is a cybersecurity-focused technology company that helps private and public sector organizations in highly regulated industries to effectively manage risk. RSI Security provides cyber engineering, assessment, advisory services as well as technical testing to amp up client's security posture while mitigating business risk. Our team members come from a wide range of backgrounds and specialties. All consultants come from a computer science, engineering, or information systems discipline and many consultants have obtained masters and doctorates. Our team members include published authors, open source developers, industry researchers and conference presenters. For more information, visit rsisecurity.com
    Thrive Here & What We Value- Collaboration is Encouraged but Expected- Build and Maintain Strong Team Camaraderie through Virtual Happy Hours, Daily Morning Meetings, Professional Development Topics- Commitment to Equity, Equal Opportunity, Inclusion, Diversity across Value Chain- Consideration for Qualified Applicants with Arrest and Conviction Records- Benefits: Medical & Vision Insurance, Dental Insurance, Unlimited PTO, 401(k), Tuition Reimbursement, Paid Parental Leave, Additional Location-Based Benefits- Emphasis on Collaboration and Team Camaraderie- Commitment to Equity, Equal Opportunity, Inclusion, Diversity- Unlimited Flex Vacation- Paid Holidays- Paid Parental Leave- 401k at 100% Match- Medical, Dental, and Vision Plans- E-learning Training Courses- Company-Sponsored Leadership & Mentoring Programs- Supportive and Forwardthinking Environment- Opportunity to Contribute Meaningfully to Impactful Projects- Emphasis on Collaboration, Operational Excellence, Innovation- Employee Wellness and Assistance Program- Employer-Paid Medical, Dental, Vision Coverage, Life Insurance- Learning & Development Opportunities- Financial Wellness Benefits (401K Retirement Plan with 100% Match)- Work and Life Balance Remote Work Environment
    View more
    Your tracker settings

    We use cookies and similar methods to recognize visitors and remember their preferences. We also use them to measure ad campaign effectiveness, target ads and analyze site traffic. To learn more about these methods, including how to disable them, view our Cookie Policy or Privacy Policy.

    By tapping `Accept`, you consent to the use of these methods by us and third parties. You can always change your tracker preferences by visiting our Cookie Policy.

    logo innerThatStartupJob
    Discover the best startup and their job positions, all in one place.
    Quick SearchSearch JobsSearch Remote Jobs hiring WorldwideSearch Remote Jobs in the USSearch Jobs in IndiaSearch Remote Jobs in UKSearch by Title
    AreaCaliforniaMassachusettsNew YorkTexasVirginiaWashington D.C.View all
    Popular SubRemote JobsWeb3 JobsiOS Developer JobsFront End Developer Remote JobsComputational Geometry JobsCannabis CareersView all
    CompanyAbout UsContact usBlogCreditsCareersPrivacy PolicyCookie Policy
    Copyright © 2024