Senior Cyber Security Compliance Engineer

Senior Posted 9 days ago
Main Location
Ames, IA, United States
Open jobs

The Senior Cyber Security Compliance Engineer is responsible for managing and educating pre and post sales customers on WDesk and Workiva cybersecurity controls, and overseeing the day-to-day management of WDesk control. as well as managing pre-sales and post-sales activities in the field as needed. The Senior Cyber Security Compliance Engineer will be responsible for improving process, managing documentation libraries and other customer deliverables for team scaling purposes. The Senior Cyber Security Compliance Engineer contributes to Wdesk security by identifying short-term and long- range issues and customer concerns that must be addressed. This person will be responsible to managing customer and prospect assessments and audits in line with regulatory compliance.

What You'll Do

  • Manage and improve processes, documentation and other customer deliverables
  • Collaborate with the sales team and customers on best practices, improving skills and overcoming challenges with WDesk controls and security
  • Provide information and commentary pertinent to deliberations, recommending courses of action and implementing directives with other areas of Workiva to help improve the security within Wdesk
  • Train customers and prospects on administering enterprise security controls through policy, architecture and training processes
  • Identify and manage short-term and long-range issues and customer concerns to improve Wdesk security and compliance
  • Establish, prioritize and delegate the fulfillment of security requests from legal and compliance areas, including questionnaires, RFPs and contract reviews
  • Oversee the completion of security assessments for new technologies, 3rd party vendors and acquisitions
  • Partner with stakeholders during the sales process to ensure future customers are educated on WDesk cybersecurity capability and infrastructure
  • Serve as main point of contact for pre sales cybersecurity assessments and provide insight and leadership for troubleshooting
  • Influence and drive TPRM best practices for WDesk
  • Educate customers and prospects on Workiva infrastructure to NIST and ISO frameworks
  • Determine analytical methods for audits, assessments, and data gathering
  • Assess existing security controls and provide consulting on industry best practices
  • Manage multiple projects while working with stakeholders

What You'll Need


  • Experience in cybersecurity risk assessments and audits
  • Exceptional customer service and communication skills
  • Strong planning and organizational skills; project management experience is a plus
  • Strong attention to detail and ability to prioritize multiple projects
  • Excellent verbal, written, and interpersonal communication skills
  • Ability to influence at all levels and in various departments
  • Ability to set priorities, meet deadlines, and manage multiple projects in a fast-paced, changing environment
  • Exceptionally strong personal integrity, and ability to professionally handle confidential matters while showing an appropriate level of good judgment and maturity
  • Strong sense of customer service and proven ability to meet established timelines
  • Possess strong technical acumen


  • 5 to 10 years of IT security or compliance experience in a SaaS environment or heavily regulated environment
  • Knowledge of TPRM, SOX Reporting, FedRamp
  • Knowledge of NIST Framework and ISO framework and GRC processes
  • Cloud Security Experience
  • Understanding of SOC 1 and 2
  • Experience with CAIQ
  • Experience with Loopio preferred
  • Background in both accounting and cybersecurity preferred
  • Prior knowledge and understanding of relevant legal and regulatory requirements, such as Health Insurance Portability and Accountability Act (HIPPA), Payment Card Industry/Data Security Standard (PCI DSS), SANS and ISO27001, FFIEC
  • Prior knowledge and understanding of common information security management frameworks such as HITRUST, ISO, IEC27001, ITIL, COBIT
  • Regulatory audits a plus
  • Knowledge in Procurement and sourcing also desired


  • B.A./B.S. degree in Computer Science or related field, or equivalent work experience
  • CISSP, CISM or other information security certification preferred

Travel Requirement

  • 25-40% travel required to meet with customers and Workiva stakeholders
We're a community of women leveraging our connections into top companies to help underrepresented women get the roles they've always deserved. Simultaneously, we work to build truly inclusive hiring processes and environments where women can thrive and not just survive.
Are you hiring? Join our platform for diversifiying your team
Senior Cyber Security Compliance Engineer