Be the spark that brightens days and ignites your career with TTEC’s award-winning employment experience. As an Information Security Principal Engineer working remotely in Colombia, you’ll be a part of bringing humanity to business. #experienceTTEC
Our employees have spoken. Our purpose, team, and company culture are amazing and our Great Place to Work® certification in Colombiasays it all!
What You’ll Do
Client and Supplier Assurance (CSA) Team
TheCSA Teamhandles key functional and compliance processes at the intersection of information security, supplier/vendor security and risk management. This includes supporting new sale/client opportunities including Requests for Information (RFIs) and Requests for Production (RFPs), client/supplier assurance audits and assessments, and related information security and risk management functions.
You'll report to theCSA Leaderand willperform a variety of support functions involving information security, compliance, and supplier management. You’ll need to be a self-motivated individual, comfortable working independently and as part of a larger group, and possess strong oral and written communication skills in the English language. The role necessitates a high level of organizational and time management ability. Operating cooperatively and professionally with internal/external stakeholders is essential.
During a Typical Day, You’ll
- Strong knowledge base and comprehension in current information security controls/safeguards and industry compliance framework regulations and standards (e.g. PCI DSS, SOC 1 and SOC 2 Type II, ISO 27001/2, HIPPA, HITRUST, GDPR). Applying this knowledge with the Company’s security policies and best practices when performing new sale opportunity security and compliance assessments and supplier security and risk assessment reviews.
- Familiarity with and comfortability reviewing, redlining, editing, and commenting on Info Sec related documents, especially contracts, MSAs, SOWs, etc.
- Comprehension and effective communicator on Company’s Global Information Security, Privacy and Compliance policies and Company processes.
- Knowledge of networks and operating systems while adjusting them according to our business environment.
- Interact frequently with Information Security, and other members of the IT technology teams, IT and Client Operations, quick learner and comprehension of Company systems, networks, Information Security requirements and communicating how they need to be applied and how they work.
- Lead security and compliance support for Sales Solution and Proposal Management’s Request For Information (RFI) and Request For Proposal (RFP) for new client opportunities. Able to market and leverage the Company’s Global Information Security, Compliance and Risk model to assist in winning bids.
- Ability to provide information security, technical, and industry compliance advice, guidance, and recommendations, to Sales Solution and Proposal management, Global Sourcing and other technical specialists on critical information security and industry compliance risks and threats.
- Able to immediately identify current and potential Company security and compliance risks and threats, engage appropriate internal departments and collaborate with teams on remediation efforts.
- Perform third-party supplier due diligence as part of company's process for using new suppliers to perform services or shares data with a supplier.
- Consult with internal team to understand the risks of supplier and how these risk could impact the Company’s risk level.
- Review supplier submitted security questionnaires and assess compliance with company's requirements.
- Provide solutions and alternate solutions that correlate to Company security and privacy policies and processes.
What You Bring to the Role
- Minimum 10+ years of experience in Information Security.
- Minimum 7+ years of experience in Supplier Risk and Compliance Management.
- Familiarity with government laws and highly regulated industries.
- Understanding of security frameworks, such as PCI, HIPAA, SOC, and ISO.
- Excellent communication skills in the English language and problem-solving abilities.
- Highly self-motivated and directed professional with keen attention to detail.
- Working knowledge of Data Privacy laws, especially the GDPR.
- Strong Business and Technical Skills.
- Ability to prioritize and meet deadlines is essential.
- Attention to detail, ability to organize work, and follow-up skills are critical to the successful performance of position responsibilities.
- Availability to work US business hours.
- Strong interpersonal and collaboration skills to effectively work with all stakeholders and customers to improve data and business processes and to negotiate priorities.
- Experience reviewing and analyzing contracts, Statements of Work (SOWs) and Master Servicing Agreements (MSAs) from an information security and data privacy standpoint
- CISSP, CISM, CISA, or any accredited security certification
What You Can Expect
- An annual incentive program
- Medical, dental, and vision
- Tax-advantaged health care accounts
- Financial and income protection benefits
- Paid time off (PTO) and wellness time off
- Tuition reimbursement and access to thousands of free online courses
Visit https://mybenefits.ttec.com for more information.
About TTEC
Our business is about making customers happy. That's all we do. Since 1982, we've helped companies build engaged, pleased, profitable customer experiences powered by our combination of humanity and technology. On behalf of many of the world's leading iconic and hypergrowth brands, we talk, message, text, and video chat with millions of customers every day. These exceptional customer experiences start with you.
TTEC is proud to be an equal opportunity employer where all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. TTEC embraces and is committed to building a diverse and inclusive workforce that respects and empowers the cultures and perspectives within our global teams. We aim to reflect the communities we serve, by not only delivering amazing service and technology, but also humanity. We make it a point to make sure all our employees feel valued, belonging, and comfortable being their authentic selves at work. As a global company, we know diversity is our strength because it enables us to view things from different vantage points and for you to bring value to the table in your own unique way.
#LI-Remote