Secure the Future with Onebrief: Cybersecurity Compliance Expert
Onebrief is revolutionizing military staff operations with our AI-powered collaboration platform. We're not just building software; we're building a superhuman staff, faster, smarter, and more efficient. As a rapidly growing, $1.1B company backed by top-tier investors like Battery Ventures and General Catalyst, we're making a real impact where it matters most.
We're an all-remote company, embracing a culture of ownership, excellence, and teamwork. If you're a cybersecurity professional ready to tackle complex challenges and contribute to a mission-driven organization, join our team!
Your Mission:
As our Cybersecurity Compliance Expert, you'll be a key player in ensuring Onebrief's security posture and compliance. You'll leverage your deep understanding of industry frameworks to build, maintain, and continuously improve our cybersecurity compliance program. Get ready to:
Orchestrate Compliance: Drive the creation, validation, and organization of compliance evidence within our GRC platform.
Automate & Accelerate: Lead efforts to automate control testing, close compliance gaps, and prepare for audits.
Shape the Architecture: Partner with engineering and IT to design and implement compliant cloud-native solutions.
Be the Compliance Guru: Track regulatory changes, advise leadership on compliance implications, and conduct risk assessments.
Empower the Team: Develop and deliver engaging cybersecurity awareness and training programs.
Secure the Supply Chain: Conduct thorough risk management assessments for current and future vendors.
What You'll Achieve:
By ensuring our compliance with CMMC 2.0 and SOC 2, you will directly contribute to Onebrief's ability to obtain and maintain critical accreditations, paving the way for continued growth and impact.
Are You the One?
We're looking for a passionate and experienced cybersecurity compliance professional who thrives in a fast-paced, collaborative environment. You're a problem-solver, a continuous learner, and driven by the challenge of building secure and compliant IT ecosystems.
You possess:
A deep understanding of cybersecurity compliance frameworks and regulatory standards.
The ability to translate complex compliance obligations into practical, cloud-native solutions.
A collaborative spirit and the ability to thrive in a remote work environment.
A passion for continuous learning and professional growth.
A strong motivation to build secure and compliant IT ecosystems.
Required Skills & Experience:
Experience: 7+ years in Cybersecurity Compliance and related roles.
GRC Expertise: Hands-on experience with GRC platforms and leveraging automated evidence collection and testing capabilities.
Cloud Savvy: Familiarity with cloud security standards (e.g., FedRAMP, ISO 27001, NIST 800-171).
Core Competencies: Strong background in policy development, control testing, and evidence gathering.
Communication: Excellent communication skills for working with both technical and non-technical stakeholders.
Compliance Frameworks: Hands-on expertise with CMMC 2.0 and SOC 2 frameworks.
Education: Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or a related field.
Certifications (at least one required): CISSP, CISM, CISSO, CPTE, CySA+, FITSP-A, GCSA, CISA, ISSEP, GSLC, or GSNA.
If you're ready to take on this exciting challenge and make a real difference, we encourage you to apply! Join Onebrief and help us build a more secure future.