As an Information Security Cloud Compliance Specialist, you will be part of the Information Security Governance and Assurance organization within the Office of the Chief Information Security Officer. This position has the objective of supporting McAfee’s security compliance programs.

About the role:

• Supporting in the development of a compliance strategy in alignment with business requirements, objectives and metrics with a focus on cloud
• Working with the Compliance team to ensure compliance to security frameworks, e.g. ISO/IEC 27001, 27017, 27018, PCI DSS, HIPAA, SOX, etc.
• Proactively identifying operational gaps or issues in existing processes and cloud environments and working to develop solutions with various groups and stakeholders
• Skills in various cloud compliance tools (using tools like Mvision Cloud configuration audit, Cloud Custodian, prowler, scoutsuite or cloud native tools).
• Proactively keeping up to date with the latest cloud security best practices and emerging cloud technologies.
• Ability to triage and deep dive into potential Cloud threats and relay risks.
• Interacting with the security architecture, engineering and operations teams in order to ensure compliance and advise on compliance requirements
• Coordinating external audits for certification purposes and managing findings to closure
• Effectively communicating objectives, project milestones, status and dependencies
• Proactively maintaining awareness on compliance changes that have direct impact on McAfee’s cloud environment

• Excellent technical writing and analytical skills
• Excellent experience with Excel, Word and other Microsoft Office products
• The ability to translate technical language into business terms
• The ability to work in a fast-paced environment
• 2-5 years’ experience in information security, IT or risk related function
• Hands on experience in AWS and GCP, or a willingness to learn
• Solid understanding of cloud including understanding service models, deployment models, shared responsibility model and control, management/data planes.
• Experience with regulatory compliance, including information security management frameworks (e.g., NIST CSF, ISO2700x, PCI, SANS Top 20 Critical Security Controls, SOX, COBIT), preferred
• Bachelor's Degree in Business Administration, Business Information Systems, Cybersecurity, Computer Science, or a related field, or equivalent work experience
• Security certifications such as CISSP, CISA, CISM, ISO27001 Implementer/Lead Auditor, PCI ISA, preferred (Certified Cloud Security Professional (CCSP), Certificate of Cloud Audit Knowledge (CCAK)

Company Benefits and Perks:

We work hard to embrace diversity and inclusion and encourage everyone at McAfee to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

• Pension and Retirement Plans
• Medical, Dental and Vision Coverage
• Paid Time Off
• Paid Parental Leave
• Support for Community Involvement

We're serious about our commitment to diversity which is why McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.