Offers “General Electric”

Expires soon General Electric

Information Security & Privacy Compliance Analyst

  • Internship
  • Boston (Middlesex)

Job description



3433271
Additional Cities

Boston
Career Level

Experienced
Relocation Assistance

Yes
Business

GE Aviation
Business Segment

Aviation Avionics & Digital Systems
Function

Digital Technology
Country/Territory

United States
Additional States/Provinces

Massachusetts
Postal Code

02210
Role Summary/Purpose

This position is responsible for the evaluating and documenting internal controls, assisting with internal security reviews, and working with internal teams to address compliance and audit issues. Your job will focus on developing security policies and technical requirements based on industry standards and regulatory requirements. You will be responsible for conducting security reviews, identifying security issues and developing security policies, procedures, and standards.
Essential Responsibilities

Your job will be to work with the operations and engineering team to understand product requirements and come up with security requirements based on regulatory requirements and industry best practices. You will also work closely with stake holders to understand critical risks to infrastructure, define potential business impact and establish corrective action plans. You will be responsible for preparing, validating and maintaining security documentation including, but not limited to: Information Security Policies, Information Security Procedures, IT Compliance Corrective and Preventive Action Plans (CAPA's), Privacy and Business Impact assessments (BIA/PIA), and Annual and Quarterly Compliance Audit Procedures.
You will be part of a cross-disciplinary software engineering team engaged in the development of a commercial system that will service multiple customers who seek to employ aerial autonomous systems in a variety of industry sectors. You and your fellow engineering team members will coordinate efforts with other teams with complementary expertise. You will be in an environment that emphasizes strong collaboration between engineering teams, product/business managers, end users, and internal/external partners.
In this role, you will:
• Serve as a subject matter expert on industry standards and security compliance frameworks and standards such as NIST 800-53, GDPR, CCPA, PCI DSS, FIPS 199.
• Develop security requirements
• Conduct security risk assessments of third-party vendor services
• Identify security issues and provide recommendations
• Support the establishment of security testing methodologies
• Provide a security guideline and establish a process to avoid possible security issues
• Conduct research on emerging technologies and communicate security issues with stakeholders
• Support internal audits of AiRXOS infrastructure and Web Applications for compliance with the NIST Risk Management Framework (NIST SP 800-53), GDPR, CCPA, etc.
Qualifications/Requirements

Basic Qualifications:
• At least 5 years of experience with security/privacy
• Knowledge in Information Security industry best practices.
• Knowledge of security standards including NIST RMF.
• Experience with participating in compliance audits in a lead or supporting role.
• Experience in preparing compliance audit workpapers such as artifact request lists, standard test cases and test plans.
• Experience with managing and supporting an Enterprise Risk Management (ERM) Lifecycle.
• Experience with managing third-party supply chain risk.
• In-depth understanding of the security considerations/implications of AWS platform

Eligibility Requirements:
• Must be willing to travel 10%
• Must be willing to work out of an office located in Boston, MA
Desired Characteristics

• Ability to create and analyze metrics to identify trends, gaps and issues
• Ability to work independently and in a collaborative team environment
• Possess an industry certification such as CISSP, CISM, CISA, etc.
• Experience with using and implementing GRC tools
• Understanding of software engineering standards and practices
About Us

AiRXOS is building new technologies and delivering a new architecture and ecosystem for the next generation of unmanned aviation. We are passionate about enabling safe, secure and economical UAV/Drone operations at global scale. We are accomplishing this with a great collaborative team of driven engineers and technologists with expertise in Distributed & Real-Time Software, Web Services, Cloud Computing, Machine Learning Algorithms, Autonomous Systems & Robotics, Cyber Security, Air Traffic Management, Computer Visualization, and Mobile Applications. Together we are delivering capabilities that will enable a new era in aviation and autonomous systems applications. We would love for you to join us!!
• The Need: A Information Security & Privacy Compliance Analyst with at least 5 years’ experience
• The Opportunity: To contribute directly to the success of innovative cloud based unmanned aerial and autonomous flight operations ecosystem.

GE (NYSE:GE) drives the world forward by tackling its biggest challenges. By combining world-class engineering with software and analytics, GE helps the world work more efficiently, reliably, and safely. GE people are global, diverse and dedicated, operating with the highest integrity and passion to fulfill GE’s mission and deliver for our customers. www.ge.com
GE offers a great work environment, professional development, challenging careers, and competitive compensation. GE is anEqual Opportunity Employer . Employment decisions are made without regard to race, color, religion, national or ethnic origin, gender (including pregnancy), sexual orientation, gender identity or expression, age, disability, veteran status or any other characteristics protected by law.
Additional Eligibility Qualifications

GE will only employ those who are legally authorized to work in the United States for this opening. Any offer of employment is conditioned upon the successful completion of a drug screen (as applicable).
Primary Country

United States
Primary State/Province

Massachusetts
Primary City

Boston

Make every future a success.
  • Job directory
  • Business directory