Principal InfoSec & Compliance Analyst

at solo.io
🇺🇸 United States - Remote
🔒 Cybersecurity🟡 Principal

Job description

Who we are.

Solo enables companies to Connect, Secure and Observe modern applications – APIs, Microservices and Data – with the industry’s leading API and Service Mesh Management Platform (“Gloo”). Solo innovations allow companies to stay on the leading edge of both technology and business possibilities.

Solo is a VC-backed company, founded in 2017 by Idit Levine. In 2021, Solo was valued at $1B. Solo’s customers are some of the largest in the world, spanning all geographies and industries. Solo’s team has deep expertise in Cloud Computing, Linux, Containers, Kubernetes, Service Mesh, APIs, AI, Security, Microservice Applications, Application Modernization.

About the role.

The Infosec and Compliance Analyst plays a pivotal role securing Solo’s infrastructure, data and software. This person is responsible for helping Solo.io define, establish and manage our corporate security strategy. This is a hands-on role helping Solo build and define the security compliance mechanisms for our products and services. It involves working with all departments at Solo.io to identify areas relevant to each department for compliance purposes, providing expert guidance. In addition, this person will help implement and document applicable policies and processes. The person in this role will work directly with auditors leading our security compliance. They may also work with our customers and prospects to understand security requirements, respond to security related inquiries and help Solo establish security commitments between both parties. The ideal candidate will have hands-on security compliance experience in a cloud native environment, as well as excellent customer facing and technical documentation skills.

This is a remote role for applicants based in the US.

Job Description:

  • Lead and own internal cybersecurity audits to ensure operational environments stay compliant and secure
  • Develop security policy documents and provide expert guidance on cybersecurity topics and policies
  • Define and build security strategy and training for the company and for different teams, working internally with stakeholders and department leaders to establish security standards and processes
  • Establish and maintain a security compliance plan across the company, including, but not limited to SOC 2 and ISO27001 compliance. This requires extensive project management and organizational skills.
  • As needed, own communication with customers regarding security compliance and generate responses to security questionnaires.
  • Manage compliance with relevant data privacy and information security laws and regulations, including, but not limited to GDPR, CCPA
  • Lead incident response plan and cross functional team
  • Experience establishing and maintaining security compliance program for SaaS offering

Job Requirements:

  • 3+ years of experience in information security, governance, risk, and compliance roles
  • Successful track record of obtaining SOC2 and ISO27001 compliance
  • 5+ years of SOC analyst or security compliance management experience in a cloud native environment
  • 2+ years of software development / DevOps or related experience
  • 3+ years of SaaS and Cloud technical hands on experience
  • Experienced in authoring and implementing information security programs and policy frameworks
  • Deep understanding and experience implementing controls for security standards and frameworks (NIST, ISO 2700127002, OWASP, SOC 2, PCI DSS)
  • Strong program management and organizational skills
  • Strong communication and collaboration skills to build relationships with internal stakeholders across the organization, at the leadership level and with customers
  • Cybersecurity certifications (SSCP, CompTIA Security, etc)

Bonus Experience

  • Hands on Kubernetes experience and knowledge
  • A degree in Cybersecurity or a related field

What you’ll love about Solo.

At Solo, our culture is all about hiring great people, creating a fun and fast-paced work culture, and letting our teams work with our customers to successfully solve their challenges.

Solo works collaboratively with our customers, partners and open source communities to deliver technology innovation, technology solutions, architectural best-practices, and hands-on education. Solo uses a unique engagement model with our customers that allows us to quickly make them successful, and continue to work closely with them as their production environments grow.

Solo is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Share this job:
Please let solo.io know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at solo.io

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply