Claroty-IT Security Compliance Manager

  • Claroty
  • USA
  • Full-time
About The Position

Claroty empowers the world’s largest enterprises to secure their cyber-physical systems across industrial (OT), healthcare (IoMT), and enterprise (IoT) environments: the Extended Internet of Things (XIoT). The Claroty Platform integrates with customers’ existing infrastructure to provide a full range of controls for visibility, risk and vulnerability management, threat detection, and secure remote access. Our platform is deployed by hundreds of organizations at thousands of sites across all seven continents. 

Launched by the famed Team8 foundry in 2015, Claroty is headquartered in New York City, with employees across the Americas, Europe, Asia-Pacific, and Tel Aviv. Claroty has raised $635 million in funding from the world’s largest investment firms and industrial automation vendors – including SoftBank, Bessemer Venture Partners, Rockwell Automation, Schneider Electric, and Siemens – making it the most well-funded industrial cybersecurity company. 

The IT Security Compliance Manager is responsible for managing Claroty’s ongoing compliance efforts across the organization. This individual will work collaboratively across multiple teams in the organization to manage risk, and mature and enhance risk and compliance-related controls and documentation.

This role will focus on the evaluation and assessment of the security and compliance related to technology, processes, procedures, people, and operations, in the support of both existing and future audits, assessments and regulatory compliance initiatives.

RESPONSIBILITIES

  • Assist with the development and implementation of the compliance and risk management program at Claroty
  • Provide support to the compliance audit and assessment efforts to include external third-party auditors with evidence collection and upload, auditor interview support, and auditor walk-throughs of policies, procedures, and related compliance and security documentation
  • Perform project and program management
  • Coordinates the completion of privacy-focused risk assessments and the development of risk mitigation plans
  • Build internal relationships with the legal department, privacy stakeholders, and the business constituencies
  • Plans and implements privacy training programs and communications
  • Interview subject matter experts and use knowledge to develop, edit, and revise documentation including standard operating procedures, system security plans, and policies and procedures
  • Review and document risk tolerance within the enterprise architecture, security architecture, security configurations, planned changes to the enterprise architecture, and available threat information
  • Assist in the development and tracking of metrics and measurements related to compliance and risk management.
Requirements:
  • Experience in supporting previous FedRAMP, NIST, ISO, SOC2, or other similar governance and compliance frameworks
  • Familiarity with privacy frameworks, and laws, etc. such as CCPA, GDPR, HIPAA, etc.
  • Experience with technical documentation related to FIPS 199, NIST SP 800-37, NIST SP 800-53 REV 4, FISMA A&A, continuous monitoring, and POA&M management
  • Experience and familiarity with cloud data security (FISMA/FedRAMP compliance) and working with public cloud solutions (AWS, Google, and Azure)
  • Experienced in writing technical documentation and knowledge of Cloud and Security concepts
  • Must possess strong presentation skills and communicate professionally in response to emails, customer responses, auditors, and internal teams
  • Ability to work independently or as a member of a team on various tasks
  • 3+ years of experience related to compliance and risk management
  • Experience with ISO27001, SOC2
  • Experience with FedRamp a plus
  •  Experience with privacy management a plus (CCPA, GDPR, etc.)
  • US Citizenship is required

Expected base salary of $115,000– $125,000. This is a good faith estimate but does not include equity, bonus, commissions, or other forms of compensation. Pay will be by experience level, but those outside of the salary band are welcome to apply.

At Claroty, we are looking to hire individuals who embody our core values: People First, Customer Obsession, Striving for Excellence, and Integrity. 

Claroty is an equal opportunity employer and is committed to fostering a diverse and inclusive work environment for all. We encourage applications from candidates of ALL diverse backgrounds, and special accommodations are available upon request in all phases of the hiring process.

Apply for this position