Automation Oversight Engineer providing oversight of compliance in automated device configurations for Comcast Business. Managing configuration checks and reporting, ensuring reliable oversight and improvement strategies.
About the role
- Information Security Manager overseeing cybersecurity and risk management initiatives at EdgeUno. Collaborating with various teams ensuring confidentiality and compliance across systems and data.
Responsibilities
- Design, execute, and continuously improve EdgeUno’s global Information Security Program aligned with ISO 27001:2022 and industry best practices.
- Serve as the Information Security Officer (ISO) responsible for maintaining our ISO 27001:2022 certification, leading audits, gap analyses, and surveillance processes.
- Define security policies, controls, and guidelines to mitigate risk and ensure corporate policies and regulatory compliance across geographies.
- Lead and mentor the Information Security Team providing support for internal users across all departments and locations.
- Own and operate the Information Security Risk Management Framework including regular risk assessments, control validation, vendor security reviews, and mitigation planning.
- Lead and maintain Business Continuity Plans (BCP), Disaster Recovery Plans (DRP), and Contingency Planning procedures.
- Collaborate with Legal, Operations, and external consultants to ensure alignment with data privacy laws (e.g., LGPD, GDPR, and LATAM regulations).
- Manage Security Operations Center (SOC) functions either in-house or with third-party providers, ensuring effective threat detection and incident response.
- Oversee Threat Intelligence, vulnerability management, and offensive security practices including regular penetration testing and red/blue team exercises.
- Define and enforce Data Loss Prevention (DLP) strategies to monitor and protect sensitive data across databases, endpoints, cloud, and SaaS platforms.
- Drive data classification and privacy-by-design principles across systems and development workflows.
- Develop and run a company-wide Security Awareness Program, ensuring employees understand their roles in cybersecurity and compliance.
- Conduct phishing simulations, internal campaigns, and role-based training to drive security culture across the organization.
- Partner with stakeholders to ensure alignment between support, device, and security policies.
- Serve as the primary point of contact for all security incidents, regulatory inquiries, and audit responses.
- Regularly report program status, information security risks, and KPIs to executive leadership.
Requirements
- Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field.
- Master’s and relevant certifications (CISSP, CISM, CRISC) strongly preferred.
- 10+ years of experience in cybersecurity, risk management, or information security roles, including 5+ years in a team leadership capacity.
- Deep experience with ISO 27001 implementation, certification, and maintenance.
- Knowledge of security and other frameworks such as NIST CSF , CIS Controls , MITRE ATT&CK , NIST RMF , FAIR, OCTAVE , COBIT , and ITIL.
- Experience with SOC operations, threat intelligence platforms, SIEMs, SOAR, XDR, EDR, and incident response workflows.
- Familiarity with IAM/PAM systems, vulnerability scanning, DLP tools, and privacy compliance (GDPR/LGPD, etc.).
- Strong understanding of business continuity planning, disaster recovery design, and cloud/hybrid environments.
- Excellent communication skills in English; Spanish and/or Portuguese highly desirable.
- Comfortable operating in a hybrid, globally distributed organization.
- Previous experience in telecom, hosting, datacenter, or infrastructure service providers is a plus.
Benefits
- Competitive compensation package
- Training and development opportunities
- Collaborative environment
- Security Awareness Program
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Principal Systems Engineer - Cybersecurity role in protecting our nation's products as part of Integrated Platform Solutions team. Develop solutions utilizing RMF, Anti - Tamper, Software Assurance, and more.
Agent de Sécurité assurant la sécurité des usagers du réseau de transport TBM. Rattaché au Manager de Proximité Sûreté, garantissant la qualité de service public de transport en commun.
Web and Remote Access Security Engineer managing secure remote connectivity solutions. Collaborating across security and networking domains to enable reliable access for global workforce.
Security Officer protecting patients, visitors, and staff at Shriners Hospital for Children in Sacramento. Engaging in various responsibilities related to safety and security on hospital property.
Senior IT Security Administrator supporting IT security operations at Uline. Collaborating with teams to develop security procedures and manage risks effectively.
Security Technician at Presbyterian Healthcare Services ensuring safety through patrols, incident response, and emergency preparedness. Responsibilities include monitoring risks and documenting activities efficiently.
Product Security Engineer at Junglee Games ensuring security is integrated into each stage of the software development lifecycle. Collaborate across teams and harden the security of products and platforms.
Senior Cybersecurity Documentation Specialist managing Risk Management Framework initiatives for Leidos. Supporting cybersecurity documentation and compliance activities across departments with a focus on national security.
Senior Penetration Testing Analyst collaborating with DoD and other teams on cybersecurity solutions. Conducting penetration tests and assessments to enhance security across various environments.