Cybersecurity Compliance and Regulatory Expert

Cybersecurity Compliance and Regulatory Expert

Description -

Job Title

Cybersecurity Compliance and Regulatory Expert

As the world around us becomes more connected and digital, cybersecurity attacks increase opportunities for fraud and disruption. In this constantly changing landscape, the need for companies, products, and services to be secure is more important than ever.

Are you passionate about keeping good people safe from bad actors?  We are too!  We are HP Cybersecurity, and we are tasked with the security of the HP enterprise.  As HP continues our digital transformation, the work of the cybersecurity professional is never complete and is always interesting.  Come be a part of making a difference with us!

We are seeking a highly skilled Cybersecurity Compliance and Regulatory Expert with 7+ years of experience in cybersecurity, risk management, compliance or audit functions. The ideal candidate will have a strong background in cybersecurity frameworks, regulatory compliance and risk management, with a focus on existing and emerging cybersecurity regulations. This role involves ensuring that our organization adheres to all relevant cybersecurity regulations, standards, and best practices developing, guiding and monitoring policies, as well as identifying inputs for policies & standards and conducting regular assessments to ensure enterprise level compliance.

The successful candidate will be a self-driven individual with a passion for learning, understanding, and implementing evolving security regulations and standards. Staying updated with the latest changes in the regulatory landscape and excel at balancing security and business objectives by maintaining a robust security framework while supporting business operations is a must. This role requires exceptional interpersonal skills to collaborate, support, guide, and participate in various cybersecurity activities across the company. The candidate's compliance knowledge and regulatory experience will be leveraged to maintain the security of HP.

This position is hybrid and requires the employee to assist to the office two-three times a week to foster meetings and team collaboration.

What a Cybersecurity Compliance and Regulatory Expert does at HP:

• Monitor and interpret cybersecurity regulations, standards and best practices, and applicability to HP.

• Ensure HP is compliant with all relevant cybersecurity laws and regulations to avoid penalties and prevent business interruptions.

• Effectively manage all compliance processes to enable business units to fulfill customer attestation requirements.

• Create and maintain a documentation delivery methodology that automates compliance responses while tracking and storing each interaction and detail.

• Stay updated on changes in cybersecurity regulations and adjust the organization's compliance strategies accordingly.

• Contributes to and/or leads the continuous improvement and maturation of Compliance practices.

• Monitors industry cybersecurity threats, cybersecurity best practices, regulatory changes, corporate updates, and geo-political changes impacting HP’s security.

• Provide guidance and support on the development and implementation of policies and procedures to address cybersecurity compliance and regulatory requirements.

• Conduct regular assessments to identify and mitigate cybersecurity compliance risks.

• Provide guidance and training to staff on cybersecurity compliance-related matters.

• Prepares and presents cybersecurity compliance reports, analysis and briefings as required.

Individuals who thrive in this role at HP, typically have:

• Bachelor's degree in cybersecurity, information technology, or a related field. Advanced degrees or certifications such as CISSP, CISA, CRISC or CISM are highly desirable.

• Typically, 7+ years of relevant experience in cybersecurity, risk management, compliance or audit functions or a related field with a focus on cybersecurity compliance and regulatory requirements.

• Experience in monitoring and ensuring compliance with all relevant cybersecurity regulations and standards, including but not limited to GDPR, CCPA, HIPAA, ISO 27001/2, NIST CSF 2.0, and PCI-DSS.

• Knowledge of upcoming regulations like NIS2/DORA, EO 14028 and EU AI Act/CRA a plus.

• Knowledge of common GRC processes, including risk management, exception to policy, policy management, controls management/mapping, and risk assessments.

• Experience in influencing the development and implementation of policies and procedures to address cybersecurity compliance and regulatory requirements.

• Experience conducting assessments to identify and mitigate cybersecurity compliance risks.

• Ability to interpret and apply regulatory requirements to the organization's cybersecurity practices.

• Excellent analytical and problem-solving skills, can work independently in a fast-paced environment.

• Results-driven, strong analytical skills, ability to connect the dots to make better decisions.

• Able to deal well with ambiguity and evolving scenarios.

• Fluent in oral and written communications, able to effectively convey cybersecurity compliance and regulatory requirements to stakeholders.

• Project management skills to successfully identify, track, monitor and create reporting dashboards.

• Experience working in a team and with various stakeholders at various organizational levels.

• Proactive and able to work independently. Excellent responsiveness, organizational, and time management skills.

About the team:

The Cybersecurity Governance, Risk Management and Compliance team is a key pillar of the Cybersecurity organization responsible for protecting the HP Enterprise against cyber threats.  The GRC team is a diverse group of cyber security professionals who collaborate with all disciplines within Cybersecurity as well as business and functional stakeholders as trusted advisors to effectively manage cyber security risks to the business.

About HP:

You’re out to reimagine and reinvent what’s possible—in your career as well as the world around you. So are we. We love taking on tough challenges, disrupting the status quo, and creating what’s next. We’re in search of talented people who are inspired by big challenges, driven to learn and grow, and dedicated to making a meaningful difference.

We are 60,000+ HP employees, united in creating technology that makes life better for everyone, everywhere. Interested in joining us? Let’s talk.

Disclaimer
• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

The base pay range for this role is $104,800 to $158,250 annually with additional opportunities for pay in the form of bonus and/or equity (applies to US candidates only).  Pay varies by work location, job-related knowledge, skills, and experience.

Benefits:

HP offers a comprehensive benefits package for this position, including:

• Health insurance

• Dental insurance

• Vision insurance

• Long term/short term disability insurance

• Employee assistance program

• Flexible spending account

• Life insurance

• Generous time off policies, including; 

  • 4-12 weeks fully paid parental leave based on tenure

  • 11 paid holidays

  • Additional flexible paid vacation and sick leave (US benefits overview)

The compensation and benefits information is accurate as of the date of this posting. The Company reserves the right to modify this information at any time, with or without notice, subject to applicable law.

Job -

Data & Information Technology

Schedule -

Full time

Shift -

No shift premium (United States of America)

Travel -

Relocation -

Equal Opportunity Employer (EEO) - 

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

If you’d like more information about HP’s EEO Policy or your EEO rights as an applicant under the law, please click here: Equal Employment Opportunity is the Law Equal Employment Opportunity is the Law – Supplement