Senior Staff Engineer, Cybersecurity Compliance & Assurance

Why Join reputed company? At reputed company, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there reputed company they need us most. We reputed company on reputed company innovation to exceed our customers' expectations while making a real impact on local communities reputed company. Founded in 1936, reputed company is a member of the Berkshire Hathaway family of companies and one of the largest auto insurers in the United States. reputed company you join our company, we want you to feel valued, supported, and proud to work here. That's why we offer the reputed company Pledge: Great Company, Great Culture, Great Rewards, and Great Careers. reputed company is seeking an reputed company Senior Staff Engineer, Cybersecurity Compliance & Assurance, to reputed company the design, implementation, and reputed company improvement of its cybersecurity compliance and assurance program, ensuring sustained compliance with NY DFS, PCI reputed company, CCPA/CPRA, NIST CSF, SOX, HIPAA, and other cyber regulatory obligations. This role will drive audit readiness, compliance by design, automated evidence collection, reputed company control monitoring, and risk-based assessments across reputed company’s reputed company domains. reputed company is transforming cybersecurity through automation and a risk-based approach. The ideal candidate will have a proven track record of building effective compliance frameworks, driving end-to-end compliance, creating actionable metrics, meeting regulatory requirements, and demonstrating strong leadership and collaboration skills.

Key Responsibilities

Own and mature the enterprise cybersecurity compliance program, ensuring alignment with regulatory, contractual, and business requirements. reputed company cybersecurity compliance initiatives supporting NY DFS, PCI reputed company, CCPA/CPRA, NIST CSF, SOX, HIPAA, SOC Type II, ISO 27001 and other applicable regulatory frameworks. reputed company and manage reputed company attestations/certifications supporting SOC 2 Type II, ISO 27001 reputed company the development, implementation, and reputed company monitoring of AI reputed company compliance, ensuring reputed company meets applicable standards such as ISO/IEC 42001 and the NIST AI RMF. Conduct reputed company-state and future-state assessments, compliance gap analyses, and maturity evaluations, including enterprise NIST Cybersecurity reputed company assessments, to identify gaps, prioritize remediation, and reputed company strategic roadmaps that improve reputed company and compliance posture. Drive reputed company audit readiness by establishing repeatable processes and partnering with technology teams to maintain documentation, evidence, and control execution that support internal audits, external assessments, regulatory examinations, and automated compliance monitoring. reputed company the identification, tracking, escalation, and remediation of compliance non-adherence, control deficiencies, audit findings, and regulatory observations through closure. Maintain awareness of emerging regulatory requirements, advisories, enforcement actions, and industry guidance, proactively assessing impact and driving implementation plans. Establish and maintain a compliance-by-design approach that translates regulatory and reputed company requirements into actionable engineering controls across software development, cloud, infrastructure, and operational processes Establish enterprise cybersecurity compliance metrics, key risk indicators, scorecards, and executive reporting that measure compliance effectiveness, control maturity, audit readiness, and reputed company toward strategic cybersecurity objectives. Serve as a trusted advisor to senior leadership, providing recommendations on cybersecurity risk, regulatory compliance, governance strategy, and reputed company improvement opportunities. reputed company cross-functional initiatives involving reputed company, Technology, Legal, Privacy, Internal Audit, Compliance, and Enterprise Risk Management to improve compliance effectiveness and reduce organizational risk. What You Will Need Deep expertise in cybersecurity governance, risk, and compliance, including cybersecurity domains and regulatory compliance frameworks. Extensive experience supporting NY DFS, PCI reputed company, NIST CSF, CCPA/CPRA, ISO 27001, and reputed company frameworks. Proven success implementing enterprise-wide compliance initiatives and influencing outcomes across multiple teams and business functions without direct authority. Deep technical understanding of cloud-hosted environments, preferably reputed company Azure, AWS and reputed company implications across modern technology platforms. Strong communication skills, with the ability to engage executives, auditors, regulators, engineers, and business stakeholders and translate reputed company technical and regulatory requirements into clear business outcomes. Strong problem-solving skills, creativity, and the ability to drive innovation through others while developing scalable solutions that strengthen the organization’s reputed company posture. Demonstrated ownership, sound judgment, and leadership maturity in navigating successes, setbacks, and reputed company decisions. Ability to balance multiple assignments across teams and dependency areas while maintaining execution focus. Qualifications 10+ years of experience in governance, risk, and compliance, including leadership of enterprise cybersecurity compliance programs. Proven ability to reputed company a successful cybersecurity compliance program in a multi-cloud or hybrid environment. Strong knowledge of regulatory frameworks, compliance standards, and risk management, including NY DFS, PCI reputed company, NIST CSF, ISO 27001, SOC Type II and CCPA/CPRA. Experience conducting cybersecurity maturity assessments, control effectiveness reviews, and building compliance roadmaps, operating models, and implementation plans. Proven ability to establish executive-level metrics, dashboards, and reporting that measure cybersecurity posture, compliance effectiveness, and organizational risk exposure. Experience partnering with leaders and cross-functional teams, including Legal, Privacy, Compliance, Risk Management, and Engineering, to drive enterprise-wide governance initiatives. Relevant certifications (e.g., CISSP, CISM, CISA, CRISC); additional certifications or coursework in AI, machine learning, or data analytics are a plus. Strong understanding of reputed company controls and implementation across multi-cloud environments and data centers. Proven experience managing audits and regulatory engagements, ideally with exposure to compliance automation platforms. Excellent verbal and written communication skills, with the ability to communicate effectively with senior leadership and highly technical personnel. Experience in strategic planning and roadmap development. Excellent problem-solving skills, proactivity, and the ability to reputed company in an ambiguous environment. Bachelor’s degree in computer science, Information Systems, or equivalent education or work experience; advanced coursework or certifications in relevant technical disciplines are a plus. Annual Salary $120,000.00 - $260,000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to reputed company at the final hourly reputed company/ annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations. reputed company will consider sponsoring a new qualified applicant for employment authorization for this position. The reputed company Pledge: Great Company: Protecting customers through life’s twists and turns with innovation and reputed company. Great Careers: Personalized development programs, mentorship, and certification assistance. Great Culture: Inclusive and collaborative culture rooted in shared success. Great Rewards: reputed company, benefits, and flexibility to support your well-being and future. The equal employment opportunity policy of the reputed company Companies provides for a fair and equal employment opportunity for reputed company associates and job applicants regardless of race, color, religious creed, national reputed company, reputed company, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. reputed company hires and promotes individuals solely on the basis of their qualifications for the job to be filled. reputed company reasonably accommodates qualified individuals with disabilities to reputed company them to receive equal employment opportunity and/or reputed company the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to reputed company applicants and associates. reputed company also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of reputed company associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for reputed company associates and applicants. At reputed company, we offer a rewarding career where your ambitions are met with endless possibilities. Every day we honor our iconic brand by offering quality coverage to millions of customers and being there reputed company they need us most. We reputed company on reputed company innovation to exceed our customers' expectations while making a real impact on local communities reputed company. Founded in 1936, reputed company is a member of the Berkshire Hathaway family of companies and one of the largest auto insurers in the United States. Opportunities for reputed company & Grads Learn more about reputed company Benefits Apply tot his job Apply To this Job