Operational Effectiveness Tester (Security & Compliance) jobs in United States
cer-icon
Apply on Employer Site
company-logo

NextGen | GTA: A Kelly Telecom Company · 18 hours ago

Operational Effectiveness Tester (Security & Compliance)

positionOverland Park, KS
timeContract
remoteHybrid
senioritySenior Level

NextGen, a Kelly Telecom Company, is seeking an Operational Effectiveness Tester to validate security, privacy, and technology controls in real-world conditions. The role involves evidence-based testing, identifying systemic weaknesses, and translating technical failures into regulatory and business risks for leadership.

ConsultingHuman ResourcesStaffing Agency
badNo H1BnoteU.S. Citizen Onlynote
Hiring Manager
Parul Sharma
linkedin

Responsibilities

Test design and operating effectiveness of controls across people, process, and technology
Perform end-to-end walkthroughs and re-performance of technical controls
Evaluate evidence quality, favoring system-generated proof over screenshots or attestations
Identify patterns of control failure and assess severity based on regulatory exposure
Test identity, access, and privileged controls, including joiner/mover/leaver processes
Validate security and privacy controls across on-prem, cloud, hybrid, and vendor environments
Assess privacy, data protection, and consent controls involving sensitive data
Support regulatory readiness by aligning testing to enforcement expectations, not theory

Qualification

Operational Effectiveness TestingIdentity & Access ManagementCloud Control TestingPrivacyData ProtectionControl FrameworksGRC ToolsCyberArkSplunkCISACISMCISSPSoft Skills

Required

Operational Effectiveness Tester
Hybrid 3 days in office Mandatory!
US Citizens ONLY due to nature of project
Test design and operating effectiveness of controls across people, process, and technology
Perform end-to-end walkthroughs and re-performance of technical controls
Evaluate evidence quality, favoring system-generated proof over screenshots or attestations
Identify patterns of control failure and assess severity based on regulatory exposure
Test identity, access, and privileged controls, including joiner/mover/leaver processes
Validate security and privacy controls across on-prem, cloud, hybrid, and vendor environments
Assess privacy, data protection, and consent controls involving sensitive data
Support regulatory readiness by aligning testing to enforcement expectations, not theory
Industry-specific risk and sensitive data handling
Identity & Access Management, including PAM, service accounts, SoD, and emergency access
Cloud and hybrid control testing (AWS, Azure, shared responsibility models)
Privacy and data protection (PII, PCI, consent, retention, incident escalation)
Regulatory drivers and compliance obligations
Control frameworks such as NIST, ISO, SOC 2, COBIT, and internal standards
GRC tools (e.g., ServiceNow, Archer)
CyberArk, SailPoint
Splunk, Sentinel
Vulnerability management tools (Qualys, Tenable)
Cloud platforms (read-only console access)
Audit and evidence management repositories

Preferred

CISA, CISM, CRISC, or ISO 27001 Lead Auditor
CISSP, CCSP, CIPP/US, CIPM, PCI ISA/QSA
CAP or formal NIST RMF training

Benefits

Health, Dental and Vision Benefits
401k

Company

NextGen | GTA: A Kelly Telecom Company

twittertwittertwitter
Glassdoor3.6
company-logo
As part of KELLY’s SETT (Science, Engineering, Technology, and Telecom) Business Unit, we are committed to providing state-of-the-art digital infrastructure and telecom engineering solutions for legacy, 5G, and private networks.
dateFounded in 2009
location
San Diego, California, USA
people-size501-1000 employees
web-link
http://nextgengr.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Steven Edwards
Vice President, Chief Financial Officer
linkedin
leader-logo
Rashid Iqbal
Executive Vice President & Chief Growth Officer
linkedin
Company data provided by crunchbase