ZipRecruiter

Log In

1

Security Risk Compliance Jobs in Pennsylvania (NOW HIRING)

Montauk Energy

IT Risk Compliance Specialist

Pittsburgh, PA · On-site

$95.60K/yr

Job Title : IT Risk Compliance Specialist Department: Information Technology Location: Pittsburgh ... Familiarity with regulatory standards and security frameworks. * Proficiency in risk assessment ...

BNY

Vice President, Information Security

Pittsburgh, PA · On-site

This position supports governance, risk, and compliance activities by ensuring control deficiencies ... Partner closely with Information Security, Technology, Risk, Audit, Compliance, and business teams ...

Credit Genie

Security GRC Manager

Plymouth Meeting, PA · On-site

$180K - $260K/yr

Overview We are seeking a Security GRC Manager to lead our security governance, risk, and compliance program in a fast-paced fintech environment. This role is responsible for ensuring our security ...

next page

Showing results 1-20

People also search for

All JobsSecurity Risk Compliance JobsSecurity Risk Compliance Jobs in Pennsylvania

Security Risk Compliance information

What are the key skills and qualifications needed to thrive as a Security Risk Compliance professional, and why are they important?

To thrive as a Security Risk Compliance professional, you need a solid understanding of information security frameworks, risk assessment methodologies, and relevant regulations, often supported by a degree in cybersecurity or a related field. Familiarity with tools such as GRC (Governance, Risk, and Compliance) platforms, vulnerability scanners, and certifications like CISSP, CISA, or CRISC is typically required. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and collaborate with stakeholders. These skills are vital to ensure organizations meet compliance requirements, mitigate risks, and maintain trust with clients and regulators.

What are some common challenges faced by Security Risk Compliance professionals when balancing regulatory requirements with business objectives?

Security Risk Compliance professionals often need to navigate the delicate balance between adhering to complex regulatory standards and supporting the organization's operational goals. A major challenge is ensuring compliance without hindering business innovation or efficiency. This involves working closely with various departments to interpret regulations, communicate risks, and implement pragmatic controls that satisfy both legal requirements and business needs. Effective collaboration and ongoing education are key to overcoming these challenges and maintaining a strong security posture.

What is Security Risk Compliance?

Security Risk Compliance refers to the process of identifying, assessing, and managing risks to an organization's information systems while ensuring adherence to relevant laws, regulations, and industry standards. Professionals in this field develop policies, conduct risk assessments, and implement controls to protect sensitive data from threats. Their work helps organizations minimize security vulnerabilities and avoid legal or financial consequences related to non-compliance.

What is the difference between Security Risk Compliance vs Security Analyst?

AspectSecurity Risk ComplianceSecurity Analyst
CertificationsISO 27001 Lead Implementer, CISSP, CISACISSP, CompTIA Security+, GIAC Security Certifications
Work EnvironmentPolicy development, compliance audits, risk assessmentsMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government sectors focusing on regulatory adherenceIT departments across various industries focusing on security operations

Security Risk Compliance professionals focus on ensuring organizations meet regulatory standards and manage security risks through policies and audits. Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require security certifications and work within similar environments, their core responsibilities differ: compliance versus active security monitoring.

What are popular job titles related to Security Risk Compliance jobs in Pennsylvania? For Security Risk Compliance jobs in Pennsylvania, the most frequently searched job titles are:
What job categories do people searching Security Risk Compliance jobs in Pennsylvania look for? The top searched job categories for Security Risk Compliance jobs in Pennsylvania are:
What cities in Pennsylvania are hiring for Security Risk Compliance jobs? Cities in Pennsylvania with the most Security Risk Compliance job openings:
Security Risk Compliance jobs near you
Security, Risk and Compliance Consultant

Security, Risk and Compliance Consultant

SEI

Philadelphia, PA

Other

Posted 17 days ago

Job description

WHAT WE DO

Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We're known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.

We are actively looking for professionals in the following areas:

  • Compliance
  • Information Security
  • Risk Management
  • Data Privacy

The ideal candidate's experience may include but is not limited to the following:

  • Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
    • Sample projects/programs could include but are not limited to:
      • Compliance framework mapping and implementation,
      • Regulatory mapping and implementation
      • Audit, risk or regulatory remediation management,
      • Readiness for new laws and regulations,
      • Risk, Compliance or Information Security risk reporting and monitoring
      • Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
      • Design and enablement of cyber controls functions and processes
      • Change management related to regulatory adoption or compliance changes
      • Audit or certification readiness
    • Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
    • Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
    • Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
    • Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
    • Management of regulatory, internal or external audits, or experience as an auditor
    • Projects or roles requiring coordination across lines of defense working with technical, business, compliance, risk and audit teams to deliver solutions
    • Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
    • Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM

QUALIFICATIONS

Required-

  • Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
  • Hungry, Humble, Smart
  • Demonstrated business and technology acumen
  • Strong written and verbal communication skills
  • Understanding and experience solving real business problems
  • Proven track record of delivering results
  • Experience working with and/or leading a team
  • Ability to work across industries, roles, functions & technologies
  • Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)

Preferred-

  • Bachelor's degree
  • 8+ years professional experience
  • Experience across our service offerings

Apply