Security Compliance Auditor

Job Summary

A company is looking for a Security Compliance Auditor to enhance security compliance through effective event identification and pipeline development.

Key Responsibilities:

• Analyze application and infrastructure logs in Archer and Splunk to identify high-probability security events and key data attributes
• Develop a comprehensive catalog of log data that distinguishes between security events and non-security events, detailing content, structure, and metadata
• Evaluate current compliance posture against security frameworks using Archer, focusing on identifying gaps and documenting adherence to OCSF and OpenTelemetry standards

Required Qualifications:

• 3+ years of experience in a security compliance, audit, or analysis role
• Proficiency in Splunk for log analysis and event correlation
• Experience using RSA Archer for security compliance tracking and audits
• Strong understanding of OCSF (Open Cybersecurity Schema Framework) and OpenTelemetry (OTel)
• Knowledge of security logging best practices and application/infrastructure log formats