What success looks like in this role:

Develop, implement, and maintain security policies, standards, and procedures aligned with business objectives and regulatory requirements.Collaborate with senior leadership and relevant departments to ensure compliance with governance frameworks.Align organizational security practices with established frameworks (e.g., NIST, ISO 27001, COBIT).Assisting in reviewing and enhancing policies, procedures, and controls to ensure they meet the required SOC 2 standards.Designing and implementing controls that align with SOC 2 requirements across areas such as access management, encryption, incident response, and system availabilityConducting gap assessments to identify deficiencies in the existing control environment, followed by developing remediation plans before the audit begins.Regularly provide updates on compliance and risk status to executive leadership and the board.Hands-on experience testing the design and operational effectiveness of internal controls relevant to financial reporting, often in line with standards like SSAE 18Familiarity with SOC 1 audits, which focus on internal controls over financial reporting (ICFR) for service organizations.Design and implement risk mitigation controls to address identified risks, including technical and procedural changes.Continuously monitor and identify potential risks, vulnerabilities, and threats to the organization’s operations.Maintain and update a risk register, tracking identified risks, mitigation efforts, and residual risks.Coordinate internal and external compliance audits, ensuring that findings are addressed, and remediation plans are implemented.Maintain proper documentation of compliance activities and prepare reports for regulatory bodies and internal stakeholders.Ensuring that the implemented controls are functioning effectively throughout the audit periodLead incident response activities, ensuring prompt and efficient handling of security breaches, compliance violations, or system failures.Present GRC metrics and risk posture through dashboards to keep leadership informed of the current status.Analyzing the SOC 2 Type 2 audit report, interpreting the auditor's findings, and making recommendations for strengthening controls or maintaining compliance.Managing relationships with auditors, addressing inquiries, providing requested documentation, and ensuring the audit proceeds smoothly.Ensure third-party vendors comply with the organization’s security and compliance requirements.Industry relevant certifications in the Cyber Security domainStrong communication/stakeholder management skillsUnderstanding of cloud architecture/deploymentsWork with Clients, help them understand security. Monitor their compliance and establish Objectives for security.Refresh and maintain the security Policy set and Produce a new Roadmap for security Keep up to date with global security information’sWork closely with the SOC team to ensure the quality of the work delivered is maintainedManagement of client security questionnaires and requirementsShould have a good attitude to continuous learning /sharing knowledge, self-motivated team PlayerAbility to learn and retain new skills in a changing technical environment.Experience with securing applications deployed on cloud platforms (Google, Microsoft,AWS)

You will be successful in this role if you have:

10+ years of experience in cybersecurity, with a focus on governance, risk management, Vulnerability Management and compliance. Strong experience in developing and managing GRC frameworks and toolsProven track record of leading security risk assessments and compliance audits, as well as implementing mitigation strategies

Unisys is proud to be an equal opportunity employer that considers all qualified applicants without regard to age, blood type, caste, citizenship, color, disability, family medical history, family status, ethnicity, gender, gender expression, gender identity, genetic information, marital status, national origin, parental status, pregnancy, race, religion, sex, sexual orientation, transgender status, veteran status or any other category protected by law.

This commitment includes our efforts to provide for all those who seek to express interest in employment the opportunity to participate without barriers. If you are a US job seeker unable to review the job opportunities herein, or cannot otherwise complete your expression of interest, without additional assistance and would like to discuss a request for reasonable accommodation, please contact our Global Recruiting organization at GlobalRecruiting@unisys.com or alternatively Toll Free: 888-560-1782 (Prompt 4).  US job seekers can find more information about Unisys’  EEO commitment here.