Wipro
5 days ago Be among the first 25 applicants
Compliance and Security Specialist - FTE Job Title: Compliance and Security Specialist
Location: In Milford near Cincinnati or Remote
We are seeking a knowledgeable and experienced Compliance and Security Specialist to manage and support our security, risk, and compliance initiatives, including ISO 27001, NIST, CMMC 2.0, and CFIUS compliance, with good understanding of relevant FAR & DFAR clauses. This role ensures that our organization adheres to information security best practices and regulatory requirements, particularly in sensitive areas involving national security and foreign investment.
Responsibilities
Lead initiatives to achieve and maintain compliance with ISO 27001, NIST SP 800-53/CSF, and CMMC 2.0 (Levels 1–3).
Oversee compliance with CFIUS requirements for organizations subject to foreign ownership, control, or influence (FOCI).
Conduct internal (self) audits, gap assessments, risk assessments, mitigation planning and readiness reviews across compliance frameworks.
Support review of customer contract documents related to security, FAR / DFAR clauses.
Manage and monitor compliance with mitigation agreements and security commitments imposed by CFIUS, maintain documentation and reporting required for oversight, and coordinate responses to information requests.
Conduct audits and support external audits, assessments, and certifications (e.g., ISO 27001, NIST, CMMC); coordinate evidence collection and responses during audits and ensure timely remediation of findings.
Qualifications
Bachelor’s degree in Cybersecurity, Information Security, or related field (or equivalent experience).
4+ years of experience in cybersecurity compliance and regulatory frameworks.
Hands‑on experience with ISO 27001, NIST SP 800-53/CSF, and CMMC 2.0.
Experience managing or supporting CFIUS or FOCI compliance programs.
Strong understanding of U.S. regulatory and security compliance requirements.
Deep knowledge of security control frameworks and risk management.
Exceptional written and verbal communication skills.
Ability to manage multiple high‑priority projects across departments.
Skilled in developing clear, actionable documentation and reports for technical and executive audiences.
Ability to liaise with multiple stakeholders within the company and corporate.
Preferred Certifications
ISO 27001 Internal Auditor
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified CMMC Professional (CCP)
Certified in Risk and Information Systems Control (CRISC)
Experience: 5-8 Years.
The expected compensation for this role ranges from $60,000 to $135,000. Final compensation will depend on various factors, including geographical location, minimum wage obligations, skills, and relevant experience. The role is also eligible for Wipro's standard benefits including medical and dental benefits options, disability insurance, paid time off (including sick leave), and other paid/unpaid leave options.
Applicants are advised that employment in some roles may be conditioned on successful completion of a post-offer drug screening, subject to applicable state law.
Wipro provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Applications from veterans and people with disabilities are explicitly welcome.
#J-18808-Ljbffr
Compliance and Security Specialist - FTE Job Title: Compliance and Security Specialist
Location: In Milford near Cincinnati or Remote
We are seeking a knowledgeable and experienced Compliance and Security Specialist to manage and support our security, risk, and compliance initiatives, including ISO 27001, NIST, CMMC 2.0, and CFIUS compliance, with good understanding of relevant FAR & DFAR clauses. This role ensures that our organization adheres to information security best practices and regulatory requirements, particularly in sensitive areas involving national security and foreign investment.
Responsibilities
Lead initiatives to achieve and maintain compliance with ISO 27001, NIST SP 800-53/CSF, and CMMC 2.0 (Levels 1–3).
Oversee compliance with CFIUS requirements for organizations subject to foreign ownership, control, or influence (FOCI).
Conduct internal (self) audits, gap assessments, risk assessments, mitigation planning and readiness reviews across compliance frameworks.
Support review of customer contract documents related to security, FAR / DFAR clauses.
Manage and monitor compliance with mitigation agreements and security commitments imposed by CFIUS, maintain documentation and reporting required for oversight, and coordinate responses to information requests.
Conduct audits and support external audits, assessments, and certifications (e.g., ISO 27001, NIST, CMMC); coordinate evidence collection and responses during audits and ensure timely remediation of findings.
Qualifications
Bachelor’s degree in Cybersecurity, Information Security, or related field (or equivalent experience).
4+ years of experience in cybersecurity compliance and regulatory frameworks.
Hands‑on experience with ISO 27001, NIST SP 800-53/CSF, and CMMC 2.0.
Experience managing or supporting CFIUS or FOCI compliance programs.
Strong understanding of U.S. regulatory and security compliance requirements.
Deep knowledge of security control frameworks and risk management.
Exceptional written and verbal communication skills.
Ability to manage multiple high‑priority projects across departments.
Skilled in developing clear, actionable documentation and reports for technical and executive audiences.
Ability to liaise with multiple stakeholders within the company and corporate.
Preferred Certifications
ISO 27001 Internal Auditor
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified CMMC Professional (CCP)
Certified in Risk and Information Systems Control (CRISC)
Experience: 5-8 Years.
The expected compensation for this role ranges from $60,000 to $135,000. Final compensation will depend on various factors, including geographical location, minimum wage obligations, skills, and relevant experience. The role is also eligible for Wipro's standard benefits including medical and dental benefits options, disability insurance, paid time off (including sick leave), and other paid/unpaid leave options.
Applicants are advised that employment in some roles may be conditioned on successful completion of a post-offer drug screening, subject to applicable state law.
Wipro provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws. Applications from veterans and people with disabilities are explicitly welcome.
#J-18808-Ljbffr