People, Person, Crowd

WHAT WE DO MATTERS

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Tenable is more than ‘just’ the creator of Nessus. Our security solutions - including our first cyber exposure platform for modern assets, Tenable.io - are transforming global vulnerability management. We’re a global team, powered by creative thinkers who are wired for action, focused on delivering results and collaborating to enable decisive actions to protect what matters most. We’re in this together - colleagues, customers and partner communities working as One Tenable.

Can you join Team Tenable? Yes you can - if you’re excited by the thought of working with over 1200 colleagues, 27,000 customers and a range of revolutionary products that are shaping cybersecurity in 150 countries. Being valued for who you are as well as what you do, you can embrace the pace (we’re recognized as one of the fastest growing security product companies by SC Magazine, Red Herring, Info Securities, Deloitte and E&Y) as well as enjoy a superb rewards package (we’re seen as a Best Places to Work by Glassdoor, The Washington Post, The Baltimore Sun, The Baltimore Business Journal and Expert Marketplace). The key question is: Is This You?

We have big plans for continued global growth, and we’re looking for people who are creative, flexible and dedicated to helping us build something great – something that matters.

Sr. InfoSec Analyst - Risk & Compliance

E Santa Clara St. | San Jose | California | United States | 95113

Your Role:

Tenable seeks to hire a hands-on Senior Risk and Compliance Analyst to join its InfoSec-Risk and Compliance team. This role will help drive the compliance and assurance efforts for our products and cloud services. Additionally, they will assist with responding to external vendor risk assessments, security assessments, and audit requests.

We are searching for a candidate who knows both sides of the audit and assessment process; how to test controls and how to design them. The candidate will review the design of existing controls and offer ideas on improving and consolidating those controls, educating and informing others within the organization, and identifying opportunities for improvements in existing processes. This position will report to the Manager of InfoSec - Risk and Compliance.

 Your Opportunity:

  • Assists in the development and execution of the internal compliance program including preparation for audits, certifications, and risk assessments
  • Assists in developing, administering, and ongoing compliance monitoring of internal security controls
  • Serves as a company representative with prospects, customers, and partners by assisting with completing security questionnaires, assessments, and audits
  • Work with Sales, Engineering, Information Security, IT, and Product Development teams to convey compliance obligations and requirements
  • Optimize risk management, control, and compliance activities
  • Educate stakeholders on their responsibilities
  • Acts as a consultant and SME for internal departments
  • Coordinate and participate in internal and external audit walkthroughs
  • Help guide and perform remediation of issues identified during third-party assurance or internal reviews
  • Support special projects as required

What you'll need:

  • Knowledge of governance, risk and compliance frameworks such as NIST CSF
  • Experience interpreting industry and regulatory requirements and authoring supporting controls
  • Experience performing or undergoing internal and external audits
  • Experience achieving or maintaining certifications such as: FedRAMP, SOC2, ISO 27001, SOX etc.
  • 3+ years of experience performing information security and risk assessments based upon industry accepted standards
  • 4+ years of experience in compliance, information security, assurance, internal controls or risk management
  • 4+ years of experience with implementation, monitoring, and reporting of control processes, documentation, and remediation items
  • Ability to operate independently and understand all the requirements
  • Strong project management skills
  • Ability to work well with others, and communicate effectively with all levels of management
  • Must be analytical and embrace technology
  • Rational, pragmatic, and realistic approach to security, risk and compliance
  • Excellent verbal and written communication skills
  • Advanced user of Excel
  • Be self-directed and self-motivated
  • Manage conflicting priorities

And Ideally:

  • Relevant security certifications (SSCP, CISSP, CISA, etc)
  • Experience in a Big 4 or similar security consulting or risk assurance role
  • Experience conducting audits for or implementing programs such as ISO 27001
  • Experience with privacy
  • Experience with BC & DR Program Development/Management
  • BS, BA in Information Technology, Computer Science, Information Security, or other related
If you’ve reached this point in the job description and feel you’re still not sure if you should apply…Just do it! We know there are no perfect applicants. You may not have 100% of all those bullets listed above - and that’s okay. If you’re feeling like you’re not going to fit in with our teams - that’s not ok. We're One Tenable which means however you identify and whatever background you bring with you, we encourage you to submit an application if it’s a role you can be passionate about doing every day.

We’re committed to promoting Equal Employment Opportunity (EEO) at Tenable - through all equal employment opportunity laws and regulations at the international, federal, state and local levels.

Apply for this position

Email me about jobs like this

Not ?

Thank you for your interest please submit your application on the next page.

People who viewed this page also viewed

 

Sr. InfoSec Analyst - Risk & Compliance

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Information Security IT
Your Role:Tenable seeks to hire a hands-on Senior Risk and Compliance Analyst to join its InfoSec-Risk and Compliance team. This role will help drive the compliance and assurance efforts for our products and cloud services. Additionally, they will...

Systems Engineer

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Information Technology IT
Your Role: The Systems Engineer designs, implements, troubleshoots, analyzes and maintains the IT infrastructure of internal and customer facing environments; including server administration, virtualization, performance tuning, backup and disaster...

Principal Information Security Analyst

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Information Security IT
Your Role:The candidate will monitor, analyze, and respond to security events, learn about new security tools, take ownership of day-to-day security operations while protecting Tenable assets from Cyber security attacks.Your Opportunity: Find and ...

Security Sales Engineer - New York

New York New York United States Broadway, New York, United States, 10012 Sales Engineering Sales
Your Role:Tenable is seeking an experienced Security Sales Engineer to own and drive the Business and Technical aspects of strategic Enterprise selling in your assigned region. You will be partnering with Enterprise Territory Managers and a strong...

Sr. Product Manager

Columbia Maryland United States Columbia Gateway Drive, Columbia, Maryland, United States, 21046 Product Management Product Management
Your Role:Do you have a passion for product management and desire a high-impact, empowered role to help drive product strategy? The Sr. PM is expected to be skilled at researching and helping solve unmet or underserved customer jobs. Working in cl...

Sr. Product Manager

San Jose California United States E Santa Clara St., San Jose, California, United States, 95113 Product Management Product Management
Your Role:Do you have a passion for product management and desire a high-impact, empowered role to help drive product strategy? The Sr. PM is expected to be skilled at researching and helping solve unmet or underserved customer jobs. Working in cl...

Alert me about jobs like this

Not ?

Thank you

Apply for this position

Email me about jobs like this

Not ?

Thank you for your interest please submit your application on the next page.

HQ Summer Picnic

Publically Traded!

Our Women in Tech

Text, Flyer, Poster, Brochure, Paper, Advertisement, Outdoors, Nature