Cyber Security Risk and Compliance Specialist

At THE ICONIC, innovation drives us; we believe that innovation should not be sitting in a siloed team but rather be part of everyone and everything we do & deliver. Every person in tech has a voice and we find that our best work is achieved through collaboration (usually over a coffee in front of a whiteboard). 

As part of THE ICONIC’s growing Security team, you will be responsible for helping continuously improve the overall security landscape for THE ICONIC. You will be responsible for performing testing and ensuring compliance for local and global security standards. You will work closely with our stakeholders to enhance all aspects of THE ICONICs cybersecurity practices as they work to implement the changes you recommend. 

A bit about the role.…

You will be working in an agile environment on enterprise-level, high-quality software to support THE ICONIC as a leader in the online retail space allowing you to constantly adapt technology to maintain a safe and secure environment for our customers, employees and business.

You will be responsible for reviewing, developing and maintaining IT Security Policies, standards and documentation aligning with the business and engaging with relevant stakeholders, identifying any gaps, risks, or issues and working with the Director of Security to bring those to the business.  

Here’s what you need to set you off on an ICONIC journey

  • +1 year experience in documenting and maintaining Cyber Security policies
  • +2 years experience with compliance testing against ISO27001 or NIST 800-53
  • +2 years experience in IT Audit, operations, or risk consulting
  • +1  year experience in risk-based visibility and reporting
  • +1 year experience in audit and reporting tooling for risk reporting and remediation

Here’s some extra things you may bring to the table

  • ​​SACA CISA, ISO 27001 Lead Auditor certification
  • Knowledge of, or experience working with, at least one cloud platform including AWS, Azure, or GCP technologies/environments. 
  • Experience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functions
  • Strong verbal and written communication skills, including the ability to provide technical thought leadership on security risk calls with other technology teams, and the ability to translate complex technical concepts into plain English for consumption by non-technical audiences.
  • Familiarity with agile and lean software development

Why you'll love THE ICONIC

  • Feel free to skip the commute and work from home. On the days you are in the office, get here quickly thanks to our highly accessible central location
  • Sweat out the stress using our discounted gym memberships
  • Get your knowledge fix with our learning days, hackathons and learning bank
  • No matter what your style is, we have got you covered with our Amazing staff discount and our famous sample sale
  • Got a furry friend? Bring them to the office! We LOVE animals.
  • Feel supported beyond your day job with flexible hours, part time, paid parental leave, additional personal leave, family friendly workplace, first day of school off, birthday leave

Additional Information

We are committed to providing reasonable arrangements to all individuals participating in our application and interview process, and while performing job functions. If you require any accommodations or adjustments prior to the submission of your application or throughout your interview process, please contact our Talent Acquisition team directly:  

Apply for this Job

* Required

resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)