Cedar Gate Services Pvt. Ltd, Nepal, provides software research & development, data analytics, IT infrastructure management and various support services for Cedar Gate Technologies, USA. We employ 600+ professionals in our Sanepa office. For more information, visit company website at https://cedargate.com/ and follow our FB page at https://www.facebook.com/CGTNepal

Compliance Engineer

Views: 1370 | This job is expired 1 year, 4 months ago

Basic Job Information

Job Category	:	IT & Telecommunication
Job Level	:	Mid Level
No. of Vacancy/s	:	[ 1 ]
Employment Type	:	Full Time
Job Location	:	Kathmandu, Nepal
Offered Salary	:	Negotiable
Apply Before(Deadline)	:	Dec. 21, 2022 23:55 (1 year, 4 months ago)

Job Specification

Education Level	:	Under Graduate (Bachelor)
Experience Required	:	More than or equal to 2 years

Other Specification

Bachelor’s degree or equivalent in Cybersecurity, Information System Security, Computer Science, or a related field
2+ years of relevant experience
Strong verbal and written communication skills
Familiarity with security standards, guidelines, and regulations is preferred
Any security certification is a plus
Good knowledge in Application and Database Security, OWASP top 10 vulnerabilities and SDLC process is a plus

Job Description

Cedar Gate Services is looking for a Compliance Engineer to join our Security & Compliance department and contribute to the organization's overall security Governance, Risk Management and Compliance (GRC) program.

Job Summary

Compliance Engineers will be responsible for conducting internal security / privacy compliance audits and identifying areas of improvement.

Job Responsibilities

Work with the Compliance Manager to plan for and conduct internal audits related to security
Audit company procedures, practices, and documents to identify possible weaknesses or risks regularly
Identify areas of improvement in the current process
Assist in the authorization of procedures
Work with security control owners to improve control processes to make them more effective and efficient
Keep track of compliance violations
Conduct training pertaining to security policies and procedures
Conduct mock security tests / audits
Create audit reports and recommendations
Coordinate / assist third-party accessors with external audits
Handle security related tools & procedures such as Antivirus, SIEM, MDM and DLP
Answer client RFP requests and security questionnaires
Manage User Access Recertification process
Participate in BCP/DR programs
Monitor activities such as Vulnerability Assessment and Penetration Testing, incident handling and testing, logging and auditing, backup and retention and patching.