Manager, Security-Compliance

Job Description
TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance.

TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.

Don't meet every single requirement? Studies have shown that many potential applicants discourage themselves from applying to jobs unless they meet every single requirement. TriNet always strives to hire the most qualified candidate for a particular role, ensuring we deliver outstanding results for our small and medium-size customers. So if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, nobody's perfect – and we encourage you to apply. You may just be the right candidate for this or other roles.
The Manager, Security-Compliance will be responsible for assuring information security and managing risks related to the use, processing, storage, and transmission of information and the systems and processes used for those purposes. On a day-to-day, there will be responsibility to manage activities of a team, including research, analysis and documentation, evidence gathering and documenting compliance requirements.

Essential Duties/Responsibilities

• Establishes, implements, and maintains information assurance programs, requirements, and standards based on the analysis of user, policy, regulatory, and resource demands
• Conducts compliance assessments of planned and implemented information systems
• Aligns NIST CSF framework requirements with business company processes to assist company stakeholders with determining appropriate controls, test steps, evidence collection, and documentation of risks associated with gaps to defined controls
• Authors and/or updates standards or documentation to align with company and regulatory guidelines
• Assists in facilitating audit requests by interfacing between control owners and auditors
• Assists with responding to customer security questionnaires
• Advises security administrators on normal and exception-based processing of security authorization requests
• Maintains an awareness of existing and proposed security-standard-setting groups, state and federal legislation and regulations pertaining to information security
• Identifies regulatory changes that will affect information security policy, standards and procedures, and recommends appropriate changes
• Works within the information security governance process to define control recommendations that are both efficient and effective
• Identifies, reports, and resolves security violations

Education
Job Requirements and Qualifications

• Bachelor's degree in Business, Computer Science, Finance, or other related business discipline preferred or equivalent work experience

Training Requirements (licenses, Programs, Or Certificates)

• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM) or equivalent are highly desirable

Experience

• 10+ years of experience in technology / IT audit or regulatory compliance role
• 3+ years of management experience

Other Knowledge, Skills And Abilities

• Knowledge of information security management frameworks (e.g., NIST CSF, NIST 800-53, HIPAA, COBIT, etc.)
• Ability to understand and articulate security risks, as well as propose solutions and/or mitigate controls
• Familiar with Microsoft suite of security tools such as Purview, Sentinel, Defender and Entra
• Excellent written and verbal communication skills, interpersonal and collaborative skills
• An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
• Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part
• An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside one's network within an organization
• Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
• An ability to effectively influence others to modify their opinions, plans, or behaviors, with an emphasis on collaborating across multiple teams and ensuring program needs are satisfied through interpersonal and trusted communication
• Minimal travel required.

Work Environment

• Work in a clean, pleasant, and comfortable office work setting. The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable persons with disabilities to perform the essential functions.
• This position is 100% in office.

Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.

TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact to request such an accommodation.