Information Security and Compliance Manager

Job not on LinkedIn

May 20

Apply Now

Receive Emails with Similar Jobs

Cerence Inc.

WebsiteLinkedInAll Job Openings

Artificial Intelligence • Transport • Automotive

Cerence Inc. is a global company focused on providing AI-powered solutions, particularly in the automotive industry. They specialize in conversational and generative AI technologies that create intelligent, natural, and personalized interactions between humans and vehicles. With innovations like their proprietary automotive large language models, Cerence enhances user experiences across various forms of transport including cars, two-wheelers, and trucks. The company has over 500 million vehicles shipped with its AI technology, serving more than 80 OEMs and Tier 1 customers worldwide. Cerence is dedicated to continuous advancements in AI, aiming to revolutionize in-car user experiences through fast delivery and seamless integration of their solutions.

1001 - 5000 employees

Founded 2019

🤖 Artificial Intelligence

🚗 Transport

💰 Grant on 2020-12

📋 Description

•Lead the implementation and oversight of security controls interfacing with our global teams •Maintain and evolve our information security management system (ISMS) in line with frameworks such as ISO 27001/17, TISAX, CIS, and NIST •Manage projects and programs to meet our security objectives •Manage internal and external network penetration tests, vulnerability scans, and remediation processes. •Coordinate responses to customer security assessments, including RFPs, RFQs, and due diligence questionnaires. •Oversee centralized compliance controls and governance tools •Partner with IT, help desk, and software development teams to ensure secure operations and adherence to best practices. •Track and report on compliance posture, including risk assessments, audit results, and remediation efforts. •Monitor changes in regulatory requirements or industry standards and adjust internal controls as needed. •Promote a culture of security awareness across the organization.

🎯 Requirements

•Bachelors degree •5+ years of experience in enterprise information security and risk or compliance management within a software development or technology-focused company. •Strong understanding of enterprise security architecture and security solution implementation. •Experience managing penetration testing, vulnerability assessments, and incident response planning. •Experience with compliance frameworks and standards such as ISO 27001/17, TISAX, CIS, and NIST •Experience working with IT infrastructure, service/help desk teams, and software development teams. •Experience with Crowdstrike Falcon, network vulnerability management tools, static code analysis and open source scanning tools •Proven analytical and critical thinking •Proven ability to methodically plan, organize, and manage initiatives. •Demonstrated ability to lead security audits and manage external security assessments. •Excellent written and verbal communication skills, especially for client-facing documentation and security reporting.