Job Summary We are seeking a highly skilled Cybersecurity Compliance Specialist with a strong background in third‑party assurance, ISO audits, and other cybersecurity compliance activities. This role is ideal for an experienced professional with 7‑10 years in cybersecurity and compliance, looking to make an impact in a dynamic, forward‑thinking organization within HP. As a Cybersecurity Compliance Specialist, you will be responsible for ensuring that our organization and its third‑party vendors meet the necessary cybersecurity standards, regulations, and industry best practices. You will play a key role in conducting ISO audits and managing compliance programs to protect sensitive data and maintain HP’s cybersecurity posture. Responsibilities Third‑Party Assurance Support the third‑party assurance program, ensuring that for compliance‑related questions and assessments (like periodic due diligence questionnaires) for existing HP clients are responded to timely. Collaborate closely with other Cybersecurity and business teams to support information security audits and assessments by second parties (customers, entities). Support general cybersecurity compliance and HP Security Posture inquiries. ISO Audits & Certifications Oversee and manage ISO 27001, ISO 27002, and other relevant ISO audits in the organization. Coordinate with internal teams to ensure timely and successful audit outcomes. Develop and implement remediation plans for any gaps identified during audits and assessments. Compliance Activities Support the implementation of cybersecurity compliance frameworks (NIST, CIS, GDPR, CCPA, etc.) across the company. Help develop and maintain a comprehensive compliance roadmap to ensure ongoing adherence to all relevant standards, laws, and regulations. A request to respond to questions related to Security standards and regulations like compliance with NIS2/DORA requirements. Support for new or maintenance of cybersecurity certifications by third parties. Education & Experience Four‑year or Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence. Typically has 7‑10 years of work experience, preferably in cyber & IT security, or a related field. Preferred Certifications Certified Information Security Manager (CISM) Certified in Risk and Information Systems Control (CRISC) ISO 27001 Lead Auditor/Implementer Knowledge & Skills Cybersecurity Compliance Cybersecurity governance Cybersecurity policies Auditing Risk management Automation Risk analysis Issue tracking Security controls Operating systems Cross‑Organizational Skills Effective Communication Results Orientation Learning Agility Digital Fluency Customer Centricity Impact & Scope Impacts multiple teams and may act as a team or project leader providing direction to team activities and facilitates information validation and team decision making process. Complexity Responds to moderately complex issues within established guidelines. Disclaimer This job description describes the general nature and level of work performed in this role. It is not intended to be an exhaustive list of all duties, skills, responsibilities, knowledge, etc. These may be subject to change and additional functions may be assigned as needed by management. #J-18808-Ljbffr