Cybersecurity Journey Mover

7 days ago

Rizal, Philippines beBeeCompliance Full time ₱800,000 - ₱1,500,000
Job Overview

Kobalt.io is seeking a dedicated Compliance Analyst to join its security client-facing delivery team. This role involves tailoring cybersecurity protocols (policies, procedures, and protocols) to support client security journeys. The Compliance Analyst will assist vCISOs with security assessments and technical implementation projects.

This is an excellent opportunity for candidates with GRC experience to expand their knowledge by working with clients of all sizes, in various industries, with different environments and challenges.

Responsibilities:
  • Assist vCISOs in executing elements and projects within a security program
  • Work directly with clients to understand their operations and tailor security policies and procedures that are fit for the organization
  • Serve as subject matter expert of Kobalt's security education platform
  • Design and deploy phishing tests to clients regularly
  • Provide compliance audit readiness support as required
  • Provision, implement, and manage Vanta, or a similar GRC platform, for clients
  • Build new tools and techniques to compress human-intensive tasks into work that can be achieved in a fraction of the time
  • Document best practice procedures for commonly used technologies for the standardization of deployment
  • Identify system misconfigurations and draw up recommendations for clients, and assist where necessary
  • Capture regular metrics highlighting key activities, measurable accomplishments, and blockers
  • Support the design and development of Kobalt's service offerings through insightful feedback and a positive attitude as a contributing member of our security delivery team
Requirements:
  • 1-2 years of experience in Security Technologies, Information Security, Business Resilience, Technology Risk or related fields
  • External-facing client experience
  • Ability to communicate effectively, both verbally and in writing, with clients and internal audiences
  • Understanding of cybersecurity domains, including Security Operations (on-premise and cloud), Security Engineering, Information Risk Management, etc.
  • Report Writing: Emphasis on Spelling, Grammar, Word usage, and the ability to write a summary that answers the Who, What, Where, When, How, and, to the best of your ability, Why.
  • Strong communication skills: Be able to perform summarization and commonality detection and connect the dots so that a group of facts is turned into contextual information.
  • Ability to quickly learn and adapt security best practices to a wide variety of technologies in use by clientele
  • New graduates are encouraged to apply
Nice to Have:
  • Intermediate coding/scripting skills to help automate processes and scale implementation efforts
  • Be familiar with technical system access controls, how to apply them, and what benefits are gained from controls.
  • Ability to provide on-the-job training and knowledge sharing to other team members
  • Solid sense of integrity and identification with the mission.
  • Strong intuition and ability to think outside the box
  • Attention to detail while seeing the bigger picture
Benefits:
  • Competitive salary and benefits package
  • Flexible work arrangements
  • Professional development opportunities
  • Fun and inclusive company culture