Jobs//Hybrid//Legal//

Security Compliance Lead

Rapid7
| Hybrid
Sorry, this job was removed at 2:20 p.m. (EST) on Thursday, December 19, 2019
View 18 Jobs
Find out who's hiring in Greater Boston Area.
See all Legal jobs in Greater Boston Area
View 18 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Opportunity:


Given the growth of Rapid7 and the Insight platform, it's more important than ever to ensure we're building an organization and applications our customers can trust -- and customer trust is enabled by compliance with regulations and external security certifications. That's why Rapid7’s information security team is looking for a new Security Compliance Lead who has the enthusiasm and expertise to move our program to the next level and exceed our customers’ expectations.

Success in this role requires creative problem solving and customer focus. You won’t take a “check-box” approach to security compliance. Instead, you will use compliance to push Rapid7’s security maturity forward in a meaningful way.

You’ll join us in our brand new North Station HQ and work with an energized team that cares deeply about the success of these initiatives, and leadership that values work-life balance, an inclusive culture, and your ongoing career development.

Location: Boston, MA

Qualifications:

Required

  • Demonstrated success in managing/overseeing multiple projects simultaneously and providing leadership to others working on the projects you manage

  • Demonstrated success in guiding an organization’s security compliance strategy

  • Familiarity with privacy regulations, such as GDPR and the California Consumer Privacy Law

  • Familiarity with cybersecurity frameworks and standards, such as NIST, ISO, SOC 2, FedRAMP, PCI, and SOX

Preferred

  • J.D.

  • Bachelor’s or Master’s degree in information security, computer information systems, or a related field

Responsibilities:

Primary

  • Establish and maintain Rapid7’s information security compliance and privacy roadmap

    • Requires analyzing industry best practices and guidance along with information from customers, go-to-market teams, engineering, and other stakeholders to determine what compliance and privacy initiatives should be prioritized and how they should be staffed

  • Lead security compliance projects, including annual SOC 2, SOX and PCI audit, and initiatives to align with additional frameworks (e.g. audits, control design, control validation, gap assessments, and remediation projects)

    • Requires selecting and overseeing work with external auditors/consultants

    • Requires building strong relationships with Rapid7 teams and guiding their efforts to meet objectives

Secondary

  • Partner with Legal to establish and maintain data privacy procedures

  • Partner with Legal team to draft, review and negotiate with customers’ data privacy agreements, business associate agreements, and vendor minimum control requirements

  • Address questions about Rapid7’s internal security program from customers, prospects, and auditors

  • Assist in third party risk management efforts by performing security assessments of potential Rapid7 partners/vendors

  • Serve as a security compliance subject matter expert, addressing questions from Rapid7 product managers, customers, and other stakeholders

Perks:

  • Unlimited vacation

  • Flexible work hours

  • 401k matching

  • Brand new TD Garden office location

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • DjangoFrameworks
    • ExpressFrameworks
    • FlaskFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • CassandraDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • OptimizelyAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • AsanaManagement
    • ConfluenceManagement
    • JIRAManagement
    • WordpressCMS
    • SalesforceCRM

Location

Rapid7 is conveniently located between the North End and West End of Boston, with plenty of restaurants and public transport close by.

An Insider's view of Rapid7

What does your typical day look like?

For the majority of the day it’s a mix of weekly check-ins with various teams, project updates, and the occasional brainstorm.

When I’m not in meetings I’ve got headphones in while planning, writing, or designing — at my desk or perched somewhere around the office.

Grace

Senior Brand Storyteller

How has your career grown since starting at the company?

Ive been on many teams in my time at Rapid7 and they have certainly “grown” from a size perspective, but more importantly, they all evolved with the changing times and needs. Some of the teams I was on were critical for our sales grown in an emerging market and though they no longer exist by name, I can see the tangible impact we made.

Sarah

Manager, Commercial Sales

What are Rapid7 Perks + Benefits

Culture
Volunteer in local community
Once a year, Rapid7 offices across the globe close for the day so employees can volunteer.
Partners with nonprofits
Open door policy
OKR operational model
Team based strategic planning
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
President's club
Employee awards
Flexible work schedule
Remote work program
Our remote work program includes full-time remote for specific positions, Work remotely on occasion as needed.
Diversity
Documented equal pay policy
Dedicated diversity and inclusion staff
Highly diverse management team
Rapid7 is led by a diverse management team that represent the security community we serve. We believe that we all have a responsibility to continuously improve our DE&I efforts.
Mandated unconscious bias training
We believe in continuous learning, our in-house trainers conduct consistent diversity trainings. We advocate for diverse thinking and strive to cultivate a workforce that mirrors the best minds.
Diversity employee resource groups
We have so many amazing and organically created employee resource groups! These internal Rapid7 communities allow for an authentic experience where diverse employees and allies can come together.
Hiring practices that promote diversity
We've taken the Parity Pledge, we reinforce strategic recruitment, we are committed to diversity partnerships, and we understand the importance in training around unconscious bias.
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Child Care & Parental Leave Benefits
Generous parental leave
Family medical leave
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Paid volunteer time
Our employees receive unlimited hours per year of paid volunteer time.
Paid holidays
Paid sick days
Employees receive unlimited hours per year of paid sick leave.
Bereavement leave benefits
Company-wide vacation
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Rapid7 has a fully stocked kitchen including unlimited snacks, coffee, tea and all of the flavored sparkling water you can handle.
Some meals provided
Employees get free lunch during quarterly in-office Town Halls and some team meetings.
Company-sponsored happy hours
Onsite office parking
Fitness stipend
Home-office stipend for remote employees
Meditation space
Mother's room
Onsite gym
Professional Development Benefits
Job training & conferences
Lunch and learns
Promote from within
Continuing education stipend
Variable.
Continuing education available during work hours
Online course subscriptions available
Paid industry certifications
View full list of perks + benefits

More Jobs at Rapid7

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Rapid7Find similar jobs like this