Security Compliance Engineer

🔥 9 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Cisco

WebsiteLinkedInAll Job Openings

10,000+ employees

Founded 1984

🔧 Hardware

🔐 Security

🏢 Enterprise

Hardware • Security • Enterprise

Cisco is a multinational technology company that provides networking hardware, software, and services to enterprises, service providers, and governments. It builds routers, switches, optical transceivers, programmable silicon, and edge computing platforms, and offers security, collaboration (Webex), observability, and AI-enabled software and support services to help organizations design, operate, and secure large-scale networks and data centers. Cisco also delivers professional services, training, and cloud-managed solutions to support digital transformation and AI-ready infrastructure.

📋 Description

• Act as the primary technical point of contact for IRAP assessments and commercial compliance/regulatory inquiries. • Explain Dashboard infrastructure, system architecture, data flows, and security controls to assessors and regulators. • Partner with global Compliance and Security teams to prepare evidence, documentation, and responses for IRAP. • Coordinate with Engineering Teams to validate and implement required controls. • Track changes to ASD ISM, IRAP guidance, Essential Eight, Australian government cloud/security expectations, and applicable privacy or critical infrastructure requirements; assess impact to Dashboard services. • Contribute to audit readiness, remediation efforts, and continuous compliance improvements. • Maintain IRAP control mappings against Cisco CCF controls, including applicability, implementation status, ownership, evidence sources, and compensating controls. • Own the end-to-end IRAP assessment lifecycle, including scope definition, assessor engagement, evidence collection, assessment logistics, report review, and post-assessment remediation tracking. • Translate IRAP findings into prioritized engineering requirements, risk treatment plans, exceptions, and executive-level status reporting. • Review IRAP assessment reports, letters of completion, and customer-facing assurance materials for technical accuracy and consistency.

🎯 Requirements

• Bachelor’s degree in Computer Science, Engineering, Information Security, or a related field, or equivalent practical experience. • 3-7 years of experience in security engineering, cloud/infrastructure engineering, security assurance, or technical compliance. • Strong understanding of cloud infrastructure, networking, system architecture, identity and access management, encryption, logging, vulnerability management, and security control implementation. • Experience supporting security assessments or compliance frameworks such as IRAP, ASD ISM, ISO 27001, SOC 2, PCI DSS, FedRAMP, or similar. • Ability to interpret security control requirements and translate them into technical evidence, architecture narratives, remediation plans, and engineering requirements. • Ability to clearly explain complex technical and compliance topics to engineers, assessors, customers, auditors, and non-technical stakeholders. • Experience coordinating cross-functional work with Security, Compliance, Engineering, Legal, Product, and customer-facing teams. • Familiarity with ASD ISM, IRAP assessment processes, Essential Eight, or Australian government cloud security expectations. • Experience with cloud compliance programs for government or regulated customers. • Background working with global or multinational technology companies • Experience creating or maintaining system security plans, control matrices, architecture diagrams, data flow diagrams, or customer-facing security documentation. • Relevant certifications such as CISSP, CCSP, CISM, CISA, ISO 27001 Lead Implementer/Auditor, AWS/Azure/GCP security certifications, or equivalent.

🏖️ Benefits

• Flexible work arrangements • Professional development opportunities