Senior Analyst GRC - ISSO / Federal Compliance | Fully Remote US

Company Description

HireVue is where hiring happens – transforming the way organizations discover, engage, and hire the best talent. Connecting companies and candidates anytime, anywhere, HireVue’s end-to-end hiring platform features video interviewing, assessments and conversational AI. The industry leader in science backed, modern hiring solutions powered by ethical AI, HireVue has hosted more than 70 million video interviews and 200 million chat-based candidate engagements for over 1200 pioneering customers around the globe.

Job Description

HireVue is looking for a passionate InfoSec professional to join the HireVue Information Security team and spearhead HireVue’s compliance program for its federal and public sector clients. This position will report to HireVue’s Director of GRC under the Chief Information Security Officer. The ideal candidate will be an experienced security professional looking to assist in securing the data of federal agencies.

Essential Duties and Responsibilities

• Oversee and manage the implementation and maintenance of aspects of HireVue’s information security compliance program, with a focus on FedRAMP and FISMA compliance requirements for HireVue systems and services

• Coordinate and facilitate periodic assessments and audits by third-parties and clients.

• Oversee development and maintenance of HireVue’s FedRAMP authorization, including development and implementation of FedRAMP-specific security policies, procedures, and continuous monitoring documentation.

• Manage documentation of HireVue’s control implementation using the NIST SP 800-53 (rev 5) control framework.

• Document plans of action and milestones to  remediate control deficiencies and gaps identified during the audit process.

• Provide support as a contractor to federal clients as their information system security officer (ISSO) for their implementation of the HireVue Video Interview Platform web application.

• Serve as a primary point of contact between federal clients who need additional support in their implementation of the HireVue web application and with HireVue’s internal teams.

• Facilitate our clients’ security testing and audit needs of our security measures.

Qualifications

• Self-motivated and able to work with little oversight

• Bachelor’s degree preferred

• 7 years experience dedicated to Information Security and Compliance, with a focus on FISMA and NIST frameworks.

• Has completed a minimum of 3+ FedRAMP product certifications.

• Comfortable speaking directly with customers’ security teams and/or leadership, in a way that appropriately represents the company and security capabilities.

• Knowledge of and experience with information security concepts: encryption, application security, identity management, log management, disaster recovery, incident response, risk assessment, vulnerability management, etc.

• Ability to balance multiple complex tasks and quickly prioritize

• Excellent written and verbal communication skills with experience working with management

• Ability to generate and maintain accurate and current documentation of new and existing technologies

• Experience with cloud and/or SaaS security best practices is a plus.

• Relevant certifications such as CISSP or CISA certification, or desire to obtain is a plus

• Must be able complete Public Trust background investigation as required by client.

Additional Information

All team members at HireVue are expected to embody our core values, which are the H.E.A.R.T. of HireVue. They are: Hero for our Customers, Enjoy the Journey, Always do the Right Thing, Reach Forwards, and Take Action and Go. 

This position is a work-from-home role. The individual in this role must be able to work from home in an environment free from distractions, where they can attend virtual video meetings. 

HireVue takes security seriously and has measures in place to protect work-related data in a remote setting. Our organization has implemented a BYOD (Bring Your Own Device) policy, HireVue uses Google User Enrollment, which ensures personal apps and data are kept separate from work apps and data should you choose to use your personal device for work purposes. HireVue can manage only the work-related aspects of the device, ensuring privacy for personal data.

Flexible Paid Time Off | Medical, Dental, Vision | 12 Weeks Maternity & Adoption | 401K match

Click Here for US Benefits

HireVue is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other category protected under the law. HireVue is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation. All your information will be kept confidential according to EEO guidelines.

HireVue is NOT currently hiring in:

AK, IA, ME, MS, NM or WV.

#remote-us