Security Compliance Specialist
Quantifind
Palo Alto, CA, USA
Published 5 days ago
Compliance Management Systems / Technology
Who You Are
You are a technical writer in the security compliance career track who wants to work at a SaaS company with a culture of compliance. You can ask Engineers and Data Scientists questions and convert their subject matter expertise into technical content an auditor will understand. You can annotate a diagram showing Layer 2 switching and Layer 3 routing, network segmentation using VLANs, or secure data transfer and storage. You like adding to and maintaining an internal control environment which enables us to manage our technology risk and comply with our regulatory obligations while supporting the rapid growth and development objectives of the business. The NIST 800 series is one of your go-to references.
Who We Are
Quantifind helps some of the world's biggest banks catch money laundering and fraud. Quantifind also works with government agencies to use the same platform to uncover criminal networks and combat adversarial foreign ownership and influence in critical industries. Unlike other players in this space, Quantifind delivers results as Software-as-a-Service (SaaS) with consumer-grade user experiences.
Quantifind is a data science technology company whose AI platform uncovers signals of risk across disparate and unstructured text sources. In financial crimes risk management, Quantifind's solution uniquely combines internal financial institution data with public domain data to assess risk in the context of Know Your Customer (KYC), Customer Due Diligence (CDD), Fraud Risk Management, and Anti-Money Laundering (AML) processes. Today these compliance processes are burdened by ever-increasing regulatory responsibilities and an expectation of frictionless transactions. Legacy technologies demand increasingly more human resources as the operations expand; Quantifind's SaaS solution offers a way to cut through the inefficiency and enhance effectiveness simultaneously.
We process terabytes of data each day on our own dedicated Hadoop clusters. We use real-time data services to enable interactive investigations in our APIs and web applications. We use Kubernetes and Docker for our container ecosystem and we develop standalone services in Scala and Python and use Spark for MapReduce jobs.
To help you succeed, we provide a supportive environment that fosters collaboration between teams and team members, where learning and professional growth are considered a key part of your success, and of ours. We offer a flexible work environment with a family friendly work-life balance.
What a Great Candidate Looks Like:
As a Security Compliance Specialist at Quantifind on our Security Compliance Team in Palo Alto, California, you will work closely with our Senior Security Compliance Specialist on supporting risk assessments of our business and technical processes and systems. You can expect a fast-paced, Agile environment with regular compliance milestones to measure our collective success.
Quantifind's development team is centered in Palo Alto, California, and we have a satellite office in Washington, D.C. Quantifind is currently using a hybrid mix of working from home and in the office, with regular in-person touchpoints and shared office space.
A highlight of our benefits:
Depending on the position offered, equity, bonuses, commission, or other forms of compensation may also be provided as part of a total compensation package, in addition to a full range of medical, financial, and other benefits.
We are an equal opportunity employer. We pride ourselves on living our values. We are curious. We respect each other. We are proactively transparent. We relentlessly solve problems. We win together.
Will you join us? Apply now!
You are a technical writer in the security compliance career track who wants to work at a SaaS company with a culture of compliance. You can ask Engineers and Data Scientists questions and convert their subject matter expertise into technical content an auditor will understand. You can annotate a diagram showing Layer 2 switching and Layer 3 routing, network segmentation using VLANs, or secure data transfer and storage. You like adding to and maintaining an internal control environment which enables us to manage our technology risk and comply with our regulatory obligations while supporting the rapid growth and development objectives of the business. The NIST 800 series is one of your go-to references.
Who We Are
Quantifind helps some of the world's biggest banks catch money laundering and fraud. Quantifind also works with government agencies to use the same platform to uncover criminal networks and combat adversarial foreign ownership and influence in critical industries. Unlike other players in this space, Quantifind delivers results as Software-as-a-Service (SaaS) with consumer-grade user experiences.
Quantifind is a data science technology company whose AI platform uncovers signals of risk across disparate and unstructured text sources. In financial crimes risk management, Quantifind's solution uniquely combines internal financial institution data with public domain data to assess risk in the context of Know Your Customer (KYC), Customer Due Diligence (CDD), Fraud Risk Management, and Anti-Money Laundering (AML) processes. Today these compliance processes are burdened by ever-increasing regulatory responsibilities and an expectation of frictionless transactions. Legacy technologies demand increasingly more human resources as the operations expand; Quantifind's SaaS solution offers a way to cut through the inefficiency and enhance effectiveness simultaneously.
We process terabytes of data each day on our own dedicated Hadoop clusters. We use real-time data services to enable interactive investigations in our APIs and web applications. We use Kubernetes and Docker for our container ecosystem and we develop standalone services in Scala and Python and use Spark for MapReduce jobs.
To help you succeed, we provide a supportive environment that fosters collaboration between teams and team members, where learning and professional growth are considered a key part of your success, and of ours. We offer a flexible work environment with a family friendly work-life balance.
What a Great Candidate Looks Like:
- You hold a Bachelor's degree in a technical field and have 3+ years of experience in a security compliance role
- You hold a professional audit and/or information security certification (CISA, CISSP, CRISC, CISM)
- Outstanding technical writing and verbal communication skills
- Professional experience with SOC 2 or PCI controls and evidence submission to auditors
- Professional experience using the NIST framework and ISO 27001
- Professional experience with Data Privacy compliance concepts and requirements including GDPR, CCPA, and CPRA
- Exposure to CMMC and FISMA
- Familiar with the risk assessment process from intake to completion
- Professional experience interviewing subject matter experts to generate the content for compliance policies
- Good interpersonal skills for mapping between business and technical stakeholders, both inside and outside of your organization
- Professional experience in technical writing about network architecture, including writing narratives and annotations
- Experience reviewing and making necessary updates to privacy and compliance related documentation, policies, procedures, and training
- Professional experience with customer and vendor management
- Thorough understanding of IT security principles and procedures
- Familiar with the various risks and requisite controls associated with multi-tenant SaaS
- Conversant with evolving cybersecurity best practices
- Familiar with formal SDLC and change control policies
- Experience with JIRA and Confluence is strongly preferred
- Familiarity with OneTrust Certification Automation or another security assurance platform is a plus
- A team player who succeeds in a collaborative environment
- Able to work independently and can self-prioritize across multiple ongoing initiatives
- Must be legally authorized to work in the United States without the need for employer sponsorship, now or at any time in the future
As a Security Compliance Specialist at Quantifind on our Security Compliance Team in Palo Alto, California, you will work closely with our Senior Security Compliance Specialist on supporting risk assessments of our business and technical processes and systems. You can expect a fast-paced, Agile environment with regular compliance milestones to measure our collective success.
Quantifind's development team is centered in Palo Alto, California, and we have a satellite office in Washington, D.C. Quantifind is currently using a hybrid mix of working from home and in the office, with regular in-person touchpoints and shared office space.
A highlight of our benefits:
- Competitive salary
- Company Equity
- Exceptional benefits package
- Flexible Vacation & Paid Time Off
- Employer-matched 401(k) plan
- A fun environment where work-life balance is valued
Depending on the position offered, equity, bonuses, commission, or other forms of compensation may also be provided as part of a total compensation package, in addition to a full range of medical, financial, and other benefits.
We are an equal opportunity employer. We pride ourselves on living our values. We are curious. We respect each other. We are proactively transparent. We relentlessly solve problems. We win together.
Will you join us? Apply now!