Product Security Compliance Engineer


Apply Now

Overview


Lead the innovation and advancement of monitoring and managing security compliance of our products and services. You will collaborate with a cross-functional team to address compliance concerns throughout Esri’s software supply chain including Engineering, DevOps, IT, and Legal. Your work will be a critical driver towards providing continuous security compliance monitoring and enhancements. This is your opportunity to acts as an information security subject matter expert while broadening your skills in cloud security compliance across leading industry standards.

Responsibilities


  • Ensure specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations
  • Map requirements and regulatory requirements to identify continuous improvement opportunities while incorporating evolving standards such as OSCAL
  • Track compliance across multiple security frameworks including FedRAMP, ISO, HIPAA, and more while maintaining up-to-date records of requirements
  • Establish compliance test standards, perform diagnostic procedures and troubleshooting, and analyze findings
  • Prepare compliance reports with analysis of measurements, statistics, and relevant data
  • Enable security to scale through the definition of security controls and provide documentation of boundaries
  • Mitigate information security risk through continuous monitoring and automation
  • Coordinate both internal and third-party risk assessments

Requirements


  • 1+ years of experience with implementing a regulated security compliance environment
  • Working knowledge of FedRAMP, NIST 800-53/800-171, and/or ISO 27001 information security standards
  • Ability to interpret technical data (application logs, architecture diagrams, technical reports)
  • Strong and effective technical writing capabilities
  • Strong listening and verbal communication skills, with the ability to communicate at all levels of the organization
  • Bachelor's in computer science, cybersecurity, or equivalent work experience

Recommended Qualifications


  • Experience working within AWS or Azure cloud environment
  • Familiarity with HIPAA, StateRAMP, CMMS, CJIS, and/or SOC2 compliance
  • Familiarity working with Restful APIs and scripting for automation and quality control
  • Experience supporting security compliance for a Software as a Service (SaaS) offering

About Esri


Our passion for improving quality of life through geography is at the heart of everything we do. Esri’s geographic information system (GIS) technology inspires and enables governments, universities, and businesses worldwide to save money, lives, and our environment through a deeper understanding of the changing world around them.

Carefully managed growth and zero debt give Esri stability that is uncommon in today's volatile business world. Privately held, we offer exceptional benefits, competitive salaries, 401(k) and profit-sharing programs, opportunities for personal and professional growth, and much more.

Esri is an equal opportunity employer (EOE) and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

If you need a reasonable accommodation for any part of the employment process, please email askcareers@esri.com and let us know the nature of your request and your contact information. Please note that only those inquiries concerning a request for reasonable accommodation will be responded to from this e-mail address.

#LI-KE1
#LI-Remote
Apply Now