Security and Compliance SME

JOB TITLE: SECURITY AND COMPLIANCE SME
JOB LOCATION: REMOTE
WAGE RANGE*: 65.00-75.00 PER HOUR
JOB NUMBER: 25-03022

REQUIRED EXPERIENCE:

• Bachelor's degree in Information Security, Computer Science, Information Systems, or a related field
• Minimum 5 years of experience in information security, cybersecurity, or compliance roles
• Proven experience designing and managing security and compliance programs in enterprise environments
• Experience with staffing companies a plus

Certifications (one or more preferred):

• CISSP, CISM, CISA, CRISC, CEH, or similar
• ISO 27001 Lead Implementer or Auditor
• Certified Data Privacy Professional (e.g., CIPP/US, CIPM)

Technical Skills:

• Strong knowledge of regulatory requirements and control frameworks (e.g., NIST, SOC 2, ISO 27001, HIPAA, PCI-DSS, GDPR)
• Experience with security tools such as SIEM, DLP, endpoint protection, IAM, and vulnerability scanning platforms
• Familiarity with cloud-native security services (Azure Security Center, Google Cloud Security Command Center, AWS Security Hub)
• Understanding of networking, identity management, encryption, authentication protocols, and secure SDLC principles

JOB DESCRIPTION

This role is responsible for evaluating, designing, and guiding the implementation of security controls, risk mitigation strategies, and compliance programs aligned with industry standards. The SME will collaborate with stakeholders across IT, legal, risk, and business units to safeguard systems, data, and operations from evolving threats and regulatory risks.

• Assess existing security policies, technical controls, and compliance posture across cloud (e.g., Google, Azure, and AWS) and on-premises environments
• Recommend and help implement security improvements aligned with standards such as NIST CSF, ISO 27001, CIS, SOC 2, and industry-specific regulations (e.g., HIPAA, PCI-DSS, GDPR, CCPA)
• Develop and maintain security governance frameworks, incident response plans, and compliance documentation
• Conduct risk assessments, vendor security reviews, and security impact analyses for new technologies and third-party solutions
• Coordinate and support internal and external audits, penetration tests, and vulnerability assessments
• Monitor emerging threats, vulnerabilities, and regulatory updates to proactively adjust security and compliance strategies
• Work with DevOps and IT teams to embed security controls into systems development lifecycle (SDLC) and cloud infrastructure
• Lead training and awareness programs to improve organizational security culture and compliance understanding
• Track and report on security metrics, risk indicators, and audit readiness status to executive leadership

Equal opportunity employer as to all protected groups, including protected veterans and individuals with disabilities

* While an hourly range is posted for this position, an eventual hourly rate is determined by a comprehensive salary analysis which considers multiple factors including but not limited to: job-related knowledge, skills and qualifications, education and experience as compared to others in the organization doing substantially similar work, if applicable, and market and business considerations. Benefits offered include medical, dental and vision benefits; dependent care flexible spending account; 401(k) plan; voluntary life/short term disability/whole life/term life/accident and critical illness coverage; employee assistance program; sick leave in accordance with regulation. Benefits may be subject to generally applicable eligibility, waiting period, contribution, and other requirements and conditions.

#Dice