Security Risk & Compliance Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

APCO Holdings, LLC · 3 weeks ago

Security Risk & Compliance Manager

positionNorcross, GA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date10+ years exp

APCO Holdings, LLC is seeking an experienced Security Risk & Compliance Manager to join their Enterprise Information Security team. The role involves developing and overseeing risk management and compliance programs to mitigate cybersecurity threats and ensure compliance with SOC 2 and regulatory standards.

AutomotiveAutonomous VehiclesManufacturing

Responsibilities

Manage and develop risk management and compliance programs to track and monitor risk to resolution
Interact and collaborate across the company to assure security controls align with SOC 2 requirements and regulatory compliance
Regularly monitor, track, and audit SOC 2 controls and other security risks to ensure compliance with requirements such as FTC Safeguards Rule, CCPA, and NYCRR
Facilitate and ensure compliance with SOC 2 certification and regulatory compliance
Collaborate with IT and other teams to develop and implement secure processes
Develop and facilitate security awareness training
Develop security policy, standard, and process documents
Conduct security risk assessments
Conduct regular security audits
Develop and maintain assessment questionnaires
Stay abreast of relevant security and privacy regulations, laws, technologies, and threats

Qualification

IT Security experienceRiskRegulatory complianceSOC 2 certificationSecurity best practicesSecurity frameworks NISTSecurity frameworks ISO 27001Security technologies SIEMSecurity technologies WAFAnalytical skillsOralProject management skillsProblem-solving outlookWritten communicationAttention to detail

Required

Must have 10+ years of IT Security experience or related field
Must have 8+ years of risk and regulatory compliance experience
Must have 5+ years of leading successful SOC 2 or equivalent certification
Must demonstrate in-depth knowledge of current security best practice for application and network security
Must be meticulous and detailed oriented with projects and outputs, including development of reports and management of work
Understanding of network and application security best practice
Manage risk and compliance projects/tasks issues to solution
Outstanding project management and organizational skills to manage multiple security projects
Must be self-motivated, analytical and possess a problem-solving outlook
Superior attention to detail and conscientious quality of work product
Professional demeanor with superior oral and written communication skills
Bachelor's Degree in Information Security, or similar discipline
CISSP or CRISC certification or similar qualifications
Experienced with SOC 2 audits and FTC Safeguards Rule, CCPA, and NYCRR requirements

Preferred

Additional experience with implementing security frameworks such as NIST or ISO 27001
Familiar with security technologies such SIEM, WAF, vulnerability scanning

Company

APCO Holdings, LLC

twittertwitter
company-logo
The company markets its products using the EasyCare, GWC, MemberCare, Crystal Fusion, and Rider's Advantage brands.
dateFounded in 1984
location
Norcross, Georgia, USA
people-size501-1000 employees
web-link
https://apcoholdings.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Tony Wanderon
Chief Executive Officer
linkedin
leader-logo
Pankaj Singh
Chief Technology Officer
linkedin

Recent News

EIN Presswire
EasyCare, GWC, MotorTrend Certified Named to Auto Remarketing’s Top Pre-Owned Companies of 2025
2025-09-23
PR Newswire
ABCOA Deal Pack Integrates GWC Warranty to Revolutionize F&I Sales for BHPH Dealerships
2025-08-26
EIN Presswire
GWC Warranty Celebrates 30 Years of Innovation and Protection for Drivers
2025-06-19
Company data provided by crunchbase