Cybersecurity Compliance Specialist at HP Inc.

Cybersecurity Compliance Specialist:

Description -Job Summary

We are seeking a highly skilled Cybersecurity Compliance Specialist with a strong background in third-party assurance, ISO audits, and other cybersecurity compliance activities. This role is ideal for an experienced professional with 7-10 years in cybersecurity and compliance, looking to make an impact in a dynamic, forward-thinking organization within HP.

As a Cybersecurity Compliance Specialist, you will be responsible for ensuring that our organization and its third-party vendors meet the necessary cybersecurity standards, regulations, and industry best practices. You will play a key role in conducting ISO audits and managing compliance programs to protect sensitive data and maintain HP’s cybersecurity posture.

Responsibilities

• Third-Party Assurance:

• Support the third-party assurance program, ensuring that for compliance-related questions and assessments (like periodic due diligence questionnaires) for existing HP clients are responded to timely.

• Collaborate closely with other Cybersecurity and business teams to Support information security audits and assessments by second parties (customers, entities).

• Support general cybersecurity compliance and HP Security Posture inquiries

• ISO Audits & Certifications:

• Oversee and manage ISO 27001, ISO 27002, and other relevant ISO audits in the organization.

• Coordinate with internal teams to ensure timely and successful audit outcomes.

• Develop and implement remediation plans for any gaps identified during audits and assessments.

• Compliance Activities:

• Support the implementation of cybersecurity compliance frameworks (NIST, CIS, GDPR, CCPA, etc.) across the company.

• Help develop and maintain a comprehensive compliance roadmap to ensure ongoing adherence to all relevant standards, laws, and regulations.

• A request to respond to questions related to Security standards and regulations like compliance with NIS2/DORA requirements.

• Support for new or maintenance of cybersecurity certifications by third parties

• Education & Experience Recommended

• Four-year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence.

• Typically has 7-10 years of work experience, preferably in cyber & IT security, or a related field.

Preferred Certifications

• Certified Information Security Manager (CISM)
• Certified in Risk and Information Systems Control (CRISC)
• ISO 27001 Lead Auditor/Implementer

Knowledge & Skills

• Cybersecurity Compliance
• Cybersecurity governance
• Cybersecurity policies
• Auditing
• Risk management
• Automation
• Risk analysis
• Issue tracking
• Security controls
• Operating systems

Cross-Org Skills

• Effective Communication
• Results Orientation
• Learning Agility
• Digital Fluency
• Customer Centricity

Impact & Scope

• Impacts multiple teams and may act as a team or project leader providing direction to team activities and facilitates information validation and team decision making process.

Complexity

• Responds to moderately complex issues within established guidelines.

Disclaimer

• This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management.

Job -

Data & Information Technology:

Schedule -

Full time

Shift -

No shift premium (Mexico)

Travel -

No

Relocation -

No

Equal Opportunity Employer (EEO) -

HP, Inc. provides equal employment opportunity to all employees and prospective employees, without regard to race, color, religion, sex, national origin, ancestry, citizenship, sexual orientation, age, disability, or status as a protected veteran, marital status, familial status, physical or mental disability, medical condition, pregnancy, genetic predisposition or carrier status, uniformed service status, political affiliation or any other characteristic protected by applicable national, federal, state, and local law(s).

Please be assured that you will not be subject to any adverse treatment if you choose to disclose the information requested. This information is provided voluntarily. The information obtained will be kept in strict confidence.

For more information, review HP’s EEO Policy or read about your rights as an applicant under the law here: “Know Your Rights: Workplace Discrimination is Illegal"