Director, Information Security– FedRAMP
SaviyntFull Time
Senior (5 to 8 years)
Candidates should possess knowledge in ISO 27001/2 and SOC 2 trust principles, along with information security best practices. Desired certifications include ISO/IEC 27001 Lead Implementer/Auditor, CISA, or CISSP. Experience is required in participating in compliance audits, preparing audit workpapers, managing an Enterprise Risk Management (ERM) Lifecycle, and familiarity with Standard Information Gathering (SIG) for vendor risk assessments. Experience using Atlassian Jira for project management and configuring/managing GRC or IRM tools like Archer, ZenGRC, RSAM, or Vanta is also required. Experience developing compliance and security analytics using BI tools such as Looker, PowerBI, or Chartio is needed. The ability to prioritize and manage competing priorities in a fast-paced environment is essential.
The Senior GRC Analyst will serve as a subject matter expert on security best practices and compliance frameworks like SOX Section 404 IT General Controls, ISO 27001, GDPR, and CCPA. Responsibilities include maintaining security documentation such as policies, procedures, risk assessments, and BIA/PIAs. The analyst will manage the security awareness program platform, conduct quarterly phishing simulations, and perform periodic risk assessments of third-party vendors, establishing corrective action plans. They will support IT audits for critical business systems, track and manage audit findings for timely resolution, and manage the compliance framework, risk/control matrix, and compliance automation system. Weekly reports on internal control compliance status will be prepared for senior leadership.
Autonomous delivery robots for food and retail
Serve Robotics is changing the delivery industry with its self-driving robots that provide sustainable and efficient delivery solutions. Instead of using traditional vehicles, these lightweight, autonomous robots deliver small items like food and retail products, reducing carbon emissions and traffic congestion. The company operates on a delivery-as-a-service (DaaS) model, allowing businesses in the food and retail sectors to subscribe and pay based on their delivery needs. Serve Robotics aims to lead in the autonomous delivery market by offering eco-friendly solutions that enhance customer experience.