Network Compliance & Assurance Technical Lead

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI.

At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world. 

The Opportunity: 

ECI has an exciting opportunity for a Network Compliance & Assurance Technical Lead, who is responsible to overseeing and ensuring the security, compliance, and integrity of our enterprise network infrastructure. The ideal candidate will have deep expertise in network vulnerability assessments, compliance assurance, and governance frameworks. This role involves leading a team of engineers to identify, mitigate, and monitor risks while ensuring adherence to industry standards and regulatory requirements.

This is an onsite role.

What you will do:

Leadership & Collaboration

• Lead and mentor a team of compliance and network security engineers, fostering a culture of excellence and continuous learning.
• Collaborate with IT leadership, security teams, and compliance officers to establish and maintain a secure and compliant network infrastructure.
• Develop and communicate compliance strategies and progress reports to stakeholders and executive leadership.

Network Vulnerability Management

• Conduct regular vulnerability assessments, penetration testing, and risk analyses on network infrastructure.
• Oversee the remediation of identified vulnerabilities, ensuring timely resolution to maintain compliance with organizational and regulatory requirements.
• Utilize tools such as Nessus, Qualys, and OpenVAS to continuously monitor network security posture.

Compliance Assurance

• Implement and enforce compliance with regulatory frameworks such as PCI-DSS, HIPAA, GDPR, SOX, and NIST.
• Develop and maintain network security policies, standards, and procedures, ensuring alignment with industry best practices.
• Conduct audits to validate compliance with internal policies and external regulations and prepare detailed compliance reports.
• Serve as the primary point of contact for internal and external audits related to network security and compliance.

Security Architecture & Best Practices

• Design and implement secure network architectures to mitigate risks and ensure data confidentiality, integrity, and availability.
• Define and enforce access controls, including role-based access and least privilege principles.
• Collaborate with network design teams to ensure security is integrated into all network implementations.

Automation & Monitoring

• Automate compliance checks and vulnerability scans using scripting tools such as Python or Ansible.
• Implement continuous monitoring solutions to ensure real-time compliance and security visibility.
• Analyze and interpret monitoring data to proactively address potential compliance issues.

Documentation & Training

• Create and maintain detailed documentation, including network security policies, vulnerability remediation plans, and audit reports.
• Train staff on network security and compliance best practices, fostering awareness and reducing risks.

Who you are:

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Minimum of 7 years of experience in network compliance, security, or vulnerability management roles.
• Proven leadership experience in a technical or compliance-focused role.
• Expertise in vulnerability management tools (Nessus, Qualys, OpenVAS) and network security frameworks.
• Strong knowledge of regulatory compliance standards, such as PCI-DSS, HIPAA, GDPR, SOX, and NIST.
• Proficiency in designing secure network architectures and implementing access control systems.
• Hands-on experience with firewall technologies, intrusion detection/prevention systems, and secure VPNs.
• Familiarity with SIEM platforms (Splunk, QRadar, etc.) for threat monitoring and compliance reporting.
• Experience with scripting languages (Python, Bash) and automation tools (Ansible, Terraform).

Bonus points if you have:

• Experience with cloud security and compliance in AWS, Azure, or Google Cloud environments.
• Familiarity with Zero Trust principles and implementation.
• Certifications such as CISSP, CISM, CRISC, CEH, or CISA are highly desirable.
• Passionate about leading compliance efforts, mitigating network vulnerabilities, and ensuring regulatory adherence in a complex network environment.
• Strong leadership and mentoring skills.
• Effective communication and collaboration skills with technical and non-technical stakeholders.
• Ability to thrive in a dynamic and fast-paced environment.

ECI’s culture is all about connection – connection with our clients, our technology and most importantly with each other. In addition to working with an amazing team around the world, ECI also offers a competitive compensation package and so much more!  If you believe you would be a great fit and are ready for your best job ever, we would like to hear from you!

Love Your Job, Share Your Technology Passion, Create Your Future Here!

#LI-Onsite