RIT Solutions, Inc.
Security/Compliance Software Engineer
RIT Solutions, Inc., Glendale, California, us, 91222
summary, seeking a Security/Compliance Software Engineer who has experience with building Security Solutions with either Alation, BigID, Immuta or Anomalo, AWS cloud security, Snowflake DB (not schema), IAM and experience with Okta or SailPoint and Agile.
The following are notes from a vendor call regarding this position:The manager, Dave Ramos, and one of his leads, Muthoni Richards, participated in the call. Position will work directly with Muthoni.The position will require the person to be onsite at least 2 days/week in their Glendale, CA location.Dave's group is part of Disney Experience segment (Parks, Cruise Line, etc.). His team is responsible is responsible for gathering all of the data from the business groups, and then engineering, transforming/massaging the data and sending it back to the business groups for their analysis. Work with a very large volume of data that required privacy protection.This position will be responsible for oversight and implementation of risk, compliance and governance solutions for the group. These solutions are not enterprise wide and will mainly be used within the group to protect the data that they have access to.Dave confirmed that he is seeking "Sr Software Engineer" who has experience with the tools that they primary used for their compliance/governance solutions. The tools are Alation, BigID, Immuta or Anomalo. The candidate MUST have experience with at least one of these tools or with a similar tool, though they prefer one of these tools, if possible,They also required the candidate to have experience with AWS cloud security and Snowflake DB experience.The candidate should also have experience with IAM and experience with OKTA or SailPoint is a plus as that is what they are using at Disney.Security related certification is a plus.They will only conduct one round of interview (a panel interview) consisting of the manager and his two leads.
Top 3 skills sets needed: Technology compliance, risk, or audit experience., Cloud, audit and compliance management toolsInterview Schedule/Availability: Telephone followed by zoomMisc. Info: Must give last four SSN, Birth mm/dd and email address
Make sure to answer these questions:Please add the candidate's Middle Initial.IF it says above that the role has OT, please put in the OT (1.5) rate and DT (2) rates next to the regular rate.Has this candidate been submitted by us to Disney in the past?If so, is the attached resume new or the same one we used last submittal?Have they interviewed for Disney in the past:Have they worked for Disney in the past:As a Contractor or as a FTE?When and who was their manager?
EXTERNAL JOB DESCRIPTION:
Description/Comment: Ensure policies and procedures are implemented and maintained so organizational regulatory needs are met.Support implementation of special projects related to GRC activities as assigned.Collaborate with engineering and regulatory readiness teams to translate and apply technical requirements.Support architectural design sessions, and proof of concept design sessions as technical advisor, with work to include architecture diagrams that take GRC requirements into consideration.Participate in audits & assessments, supporting the identification of gaps and participate in crafting solutions to close the gaps. In some cases, you'll supervise and guide an implementation team, in others you will create and implement solutions hands on.Serve as the key participant for technical reviews in the Third-Party Assessment Review progress.Maintain up-to-date detailed knowledge of the compliance and governance industry, including awareness of new or revised regulations, Information Security norms and industry standards.
Work Schedule hybrid role; onsite approx. 2 days; subject to change
Basic Qualifications5+ years of information security technology compliance, risk, or audit experience.Knowledge of compliance frameworks, controls & regulations.Experience participating in enterprise prioritized GRC projects with validated applications in business and technical environments;Experience balancing multiple projects, engaging various customers, and driving accountability to meet timelines.Cloud security compliance controls experience (AWS strongly preferred).Demonstrable experience understanding compliance assessments and applying remediations.Collaborative work style: ability to develop and maintain effective working relationships both internal and external to the organization.Outstanding verbal, written and interpersonal communication skills with the ability to apply common sense to carry out instructions.
Preferred Qualifications Information security related certifications. (e.g. CISM, CISA, GIAC certifications).Comfortable with handling, implementing, and using audit and compliance management tools (Alation, BigID, Immuta and Anomalo) in industry forward data warehouses (Snowflake, Databricks).Innovation mind frame coupled with an agile approach. This team is establishing a new approach to governance by design and nimbleness in design thinking and implementation is central to success in the role.
Required Education Bachelor's Degree in Computer Science or EquivalentPreferred Education Master's Degree in Computer Science or Equivalent
The following are notes from a vendor call regarding this position:The manager, Dave Ramos, and one of his leads, Muthoni Richards, participated in the call. Position will work directly with Muthoni.The position will require the person to be onsite at least 2 days/week in their Glendale, CA location.Dave's group is part of Disney Experience segment (Parks, Cruise Line, etc.). His team is responsible is responsible for gathering all of the data from the business groups, and then engineering, transforming/massaging the data and sending it back to the business groups for their analysis. Work with a very large volume of data that required privacy protection.This position will be responsible for oversight and implementation of risk, compliance and governance solutions for the group. These solutions are not enterprise wide and will mainly be used within the group to protect the data that they have access to.Dave confirmed that he is seeking "Sr Software Engineer" who has experience with the tools that they primary used for their compliance/governance solutions. The tools are Alation, BigID, Immuta or Anomalo. The candidate MUST have experience with at least one of these tools or with a similar tool, though they prefer one of these tools, if possible,They also required the candidate to have experience with AWS cloud security and Snowflake DB experience.The candidate should also have experience with IAM and experience with OKTA or SailPoint is a plus as that is what they are using at Disney.Security related certification is a plus.They will only conduct one round of interview (a panel interview) consisting of the manager and his two leads.
Top 3 skills sets needed: Technology compliance, risk, or audit experience., Cloud, audit and compliance management toolsInterview Schedule/Availability: Telephone followed by zoomMisc. Info: Must give last four SSN, Birth mm/dd and email address
Make sure to answer these questions:Please add the candidate's Middle Initial.IF it says above that the role has OT, please put in the OT (1.5) rate and DT (2) rates next to the regular rate.Has this candidate been submitted by us to Disney in the past?If so, is the attached resume new or the same one we used last submittal?Have they interviewed for Disney in the past:Have they worked for Disney in the past:As a Contractor or as a FTE?When and who was their manager?
EXTERNAL JOB DESCRIPTION:
Description/Comment: Ensure policies and procedures are implemented and maintained so organizational regulatory needs are met.Support implementation of special projects related to GRC activities as assigned.Collaborate with engineering and regulatory readiness teams to translate and apply technical requirements.Support architectural design sessions, and proof of concept design sessions as technical advisor, with work to include architecture diagrams that take GRC requirements into consideration.Participate in audits & assessments, supporting the identification of gaps and participate in crafting solutions to close the gaps. In some cases, you'll supervise and guide an implementation team, in others you will create and implement solutions hands on.Serve as the key participant for technical reviews in the Third-Party Assessment Review progress.Maintain up-to-date detailed knowledge of the compliance and governance industry, including awareness of new or revised regulations, Information Security norms and industry standards.
Work Schedule hybrid role; onsite approx. 2 days; subject to change
Basic Qualifications5+ years of information security technology compliance, risk, or audit experience.Knowledge of compliance frameworks, controls & regulations.Experience participating in enterprise prioritized GRC projects with validated applications in business and technical environments;Experience balancing multiple projects, engaging various customers, and driving accountability to meet timelines.Cloud security compliance controls experience (AWS strongly preferred).Demonstrable experience understanding compliance assessments and applying remediations.Collaborative work style: ability to develop and maintain effective working relationships both internal and external to the organization.Outstanding verbal, written and interpersonal communication skills with the ability to apply common sense to carry out instructions.
Preferred Qualifications Information security related certifications. (e.g. CISM, CISA, GIAC certifications).Comfortable with handling, implementing, and using audit and compliance management tools (Alation, BigID, Immuta and Anomalo) in industry forward data warehouses (Snowflake, Databricks).Innovation mind frame coupled with an agile approach. This team is establishing a new approach to governance by design and nimbleness in design thinking and implementation is central to success in the role.
Required Education Bachelor's Degree in Computer Science or EquivalentPreferred Education Master's Degree in Computer Science or Equivalent