The Senior Manager, Security Assurance will lead security assurance initiatives, drive compliance with various security frameworks, and ensure Foundever's data integrity. The ideal candidate will possess extensive experience with cybersecurity frameworks and audits, including but not limited to HITRUST, SOC, ISO 27001, NIST, and PCI DSS. They will also be responsible for facilitating external audits and collaborating with cross-functional teams to enhance our security posture.

Job Responsibilities

 

Lead and manage the Security Assurance programs, ensuring compliance with regulatory and internal standards (i.e. HIPAA, GDPR, EU AI Act, etc.) Oversee, coordinate, and facilitate external audits (i.e., HITRUST, SOC, ISO 27001, NIST, PCI DSS) and collaborate with auditors to provide necessary documentation and responses Assess and identify gaps in security controls and develop strategies for remediation and improvement Serve as a subject matter expert on security frameworks and help influence the organization's security strategy Develop and implement security standards and policies in alignment with organizational objectives and industry best practices Conduct risk assessments and vulnerability assessments to evaluate the security posture of the organization and its assets Collaborate with IT, Legal, and Compliance teams to ensure coherent security practices across the organization Review change management requests to ensure alignment with compliance frameworks and security standards, providing recommendations for mitigating potential risks associated with proposed changes Collaborate with cross-functional teams to assess security compliance requirements in contracts, offering guidance and support in drafting, negotiating, and reviewing contractual terms related to data protection and security compliance measures Assist in the identification and documentation of security-related clauses in contracts, ensuring that all agreements reflect the necessary compliance and risk management measures in accordance with relevant frameworks Prepare and present regular updates to senior leadership on the status of security assurance initiatives and audit findings Stay informed of industry trends, threats, and regulatory changes affecting information security Skills and Qualifications

 

7-10 years of experience in information security, with a focus on security assurance and compliance (HIPAA experience highly preferred) Bachelor's degree in Computer Science, Information Technology, Security Management, or a related field (Master’s degree preferred) In-depth knowledge of security frameworks and standards such as HITRUST CSF, SOC 1/2, ISO 27001, NIST, PCI DSS, etc. Proven experience in managing and leading external audit engagements, including preparation, facilitation, and follow-up Strong analytical and problem-solving skills, with the ability to assess complex security issues and implement effective solutions Exceptional communication and interpersonal skills with the ability to engage and influence stakeholders at all levels Experience in project management and the ability to prioritize and manage multiple initiatives simultaneously Proven experience with compliance software and external audit portals for evidence posting and collaboration Knowledge of audit cycles and certifications for cloud hosted applications, AI experience a plus Relevant security certifications and framework certifications (e.g., CCSFP, CISM, CISSP, CISA, CRISC, ISO Lead Auditor, PCIP) are highly desirable.   About Us

Foundever® is a global leader in the customer experience (CX) industry. With 150,000 associates across the globe, we’re the team behind the best experiences for +800 of the world’s leading and digital-first brands. Our innovative CX solutions, technology and expertise are designed to support operational needs for our clients and deliver a seamless experience to customers in the moments that matter.

 

#LI-MAM