Program Manager II - Information Security

Akamai(R) is the leading content delivery network (CDN) providing cloud services that help deliver, optimize, and secure online content and business applications. At the foundation of Akamai solutions, the Akamai Intelligent Platform™ enables unmatched speed, reliability, and security–backed by expertise and relentless innovation–to improve reach and invisibility across the web.

Security and Compliance under appreciated where you are? Not here, we take them seriously and are backed by a company that makes security a priority as part of the culture. Join us to run assessments like the annual SSAE-16 assessments, including organization, preparation and basic technical remediation. Are you curious, communicative, creative, and adroit at learning new technologies quickly? Does your curiosity include analyzing systems? And can you distill the verbose compliance standards into comprehensible objectives and communicate them to diverse audiences? Are you comfortable communicating with collaborators in a wide range of roles both internal and external to your team and company? Do you have experience interpreting the language of compliance standards to determine how it might apply to a novel business process? If so, come join our team of intrepid guides, steering Akamai Faster Forward through the jungle of compliance standard requirements! As a Program Manager 2 in InfoSec’s Compliance team, you will have the opportunity to learn detailed technical information concerning the safety and operation of Akamai’s platform and determine how best to correlate it with existing security standards (such as SSAE-16, ISO 27002, PCI-DSS, etc.). You will work with your teammates, employees throughout the company and external assessors. Together you will prepare and facilitate audits, and shepherd issues to resolution. You will coordinate small groups for short-term projects, generally lasting a few days to a few months. You will also handle daily operational items, like tracking the emergence and remediation of security vulnerabilities.

* Join us to run assessments like the annual SSAE-16 assessments, including organization, preparation and basic technical remediation. This will involve: * Scheduling and leading interviews with internal subject matter experts. * Document preparation and review. * Communicating comfortably with vendors to drive the RFP and selection processes. * You will become proficient in additional standards as needed, including HIPAA, PCI DSS, ISO 27002, and Sarbanes-Oxley (SOX). * Gather and analyze audit findings and evaluate items of note. This may include document review, interviews of experts, and collecting evidence. * Document processes and procedures, and work with various groups at Akamai (e.g. Engineering, Corporate functions, etc.). * Perform daily and weekly operational work tracking and following up on such items as key authenticator rotations, vulnerability management, documentation reviews and updates, and presenting the security section of weekly New Hire Orientation sessions. * Continually improve our processes and services.

**Basic Qualifications** * Bachelor’s degree or equivalent experience plus 5 years qualifying work experience. * 3+ years of experience with SSAE-16, ISO 27002, PCI-DSS, HIPAA, SOX, or other information security standards. * 3+ years of experience organizing and leading a geographically distributed team to successfully deliver a multi-day event or performance. * 3+ years of experience solving problems with computers. **Desired Qualifications** * Emotional patience, * Gentle good humor, an even keel and an appreciation for the absurd. **Tech Oriented:** * Credit or reputation for being a kind and effective compliance officer. * Experience: * With the production of theatrical performances. * Documenting technical systems of architecture assessor’s can understand. * Working knowledge of auditing principles, practices and compliance standards. * With building respectful relationships between departments. * Working with compliance standards fitting non-standard situations. * Specific experience with writing controls for SSAE-16 especially desired **Collaboration Oriented:** * Outstanding written and verbal communication skills, specifically with the ability to: * Listen deeply and well (including to hear what is not being said, as well as what is). * Analyze and articulate complex concepts to a broad range of technical and business audiences. * To be persuasive, using these superpowers for the good and security of all. **Miscellaneous** * Strong organizational skills – you will have a good deal of independence. * A firm understanding of information security principles. * An insatiable curiosity and a love of challenges. **Other Information** * Is relocation available for this position: No * Is US Citizenship required: No * Is a Security Clearance Required: No * If yes, applicants selected will be subject to a government security investigation & must meet eligibility requirements for access to classified information.