Security Compliance Specialist jobs in United States
cer-icon
Apply on Employer Site
company-logo

EY · 8 hours ago

Security Compliance Specialist

positionLos Angeles, CA
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
money$128K/yr - $240K/yr
date8+ years exp

EY is a global leader in professional services, dedicated to building a better working world. The Security Compliance Specialist will work within the Information Security Portfolio Compliance Enablement function to ensure compliance with Information Security policies and enhance risk posture across various global assets and systems.

AccountingAdviceBusiness IntelligenceConsultingFinancial ServicesProfessional Services
check
Growth Opportunities
check
H1B Sponsor Likelynote

Responsibilities

Assisting with managing the Portfolio or Service Line of security risk and compliance, engaging directly with key EY stakeholders to mitigate and reduce risks and provide insights on top risks impacting the security posture of the businesses
Gather information and report on security risk trends and themes that require a comprehensive approach to remediation
Proactively seeking out and identifying security risks, weaknesses, and potential vulnerabilities in systems and processes before they can be exploited. Improve compliance with security standards and policies though continuous improvement and innovation in security practices
Assist with managing the end-to-end workflow of security compliance of risk findings in our Governance, Risk, and Compliance (GRC) tool to ensure continuity and compliance with security policies, standards and regulations
Lead and contribute to projects that improve EY's risk posture
Develop and implement compliance strategies and remediation plans
Collaborate with Service Line and business stakeholders to reinforce policies, control ownership, and compliance responsibilities and support the communication of security findings and recommendations
Contribute to proactive security initiatives and continuous improvement of security practices
Translate technical vulnerabilities into business risk terms
Maintain and enhance compliance assessment toolkits
Conduct assessments and evaluate compliance effectiveness for technology infrastructure, applications, and third-party dependencies
Improve compliance with security standards and policies through continuous improvement, project management, and automation and innovation in security practices and processes

Qualification

Compliance managementRisk assessmentsGovernanceRiskCompliance (GRC)Cyber Security experienceTechnical infrastructure knowledgeRegulatory requirements knowledgeLeadership experienceCommunication skillsInterpersonal skillsOrganizational skillsProject management

Required

At least 8 years of experience in Cyber Security or a related field
At least 3 years of experience in a leadership role managing a team
A degree in Cybersecurity, Information Security, Computer Science, or related discipline; or equivalent work experience
One or more of the following or equivalent certifications: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT
Familiarity with security standards like ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT
Understanding of governance, risk, and compliance (GRC) frameworks
Experience with regulatory requirements such as PCI, SOX, HIPAA, GDPR, GLBA
Proven ability to identify and mitigate security risks proactively
Capable of working with diverse teams and promoting an enterprise-wide, collaborative security culture
Experience in managing communication and recommendations to IT project teams
Strong English language communication skills and the ability to work with diverse teams

Preferred

Sound judgment, tact, and decision-making ability
Familiarity with local and regional regulatory requirements
Flexibility to adapt to evolving priorities and business needs
Exceptional management, interpersonal, communication, and organizational skills
Proven project management expertise, ideally with PMP certification or equivalent experience
Hands-on experience with GRC platforms like RSA Archer or IBM Open Pages

Benefits

Medical and dental coverage
Pension and 401(k) plans
Paid time off options
Flexible vacation policy
Time off for designated EY Paid Holidays
Winter/Summer breaks
Personal/Family Care
Other leaves of absence when needed to support your physical, financial, and emotional well-being

Company

EY

twittertwittertwitter
Glassdoor3.8
company-logo
EY is building a better working world by creating new value for clients, people, society, the planet, while building trust in the capital markets.
dateFounded in 1989
location
London, England, GBR
people-size10001+ employees
web-link
http://www.ey.com

H1B Sponsorship

EY has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (10242)
2024 (9877)
2023 (10966)
2022 (9394)
2021 (5652)
2020 (8849)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Jonathan Williamson
Chief Operating Officer
linkedin
leader-logo
Abhishek Sen
Partner
linkedin

Recent News

GlobeNewswire
Major Organizations Support Membership in CPA Canada, Strengthening the Profession Nationally and Internationally
2026-01-16
IndiaTimes
Delhi HC quashes I-T order to EY on withholding tax
2026-01-16
PRLog
Boys & Girls Clubs of Silicon Valley names Jon Cisler to its Board of Directors
2026-01-11
Company data provided by crunchbase