Sr Engineer Information Security & Compliance is responsible for supporting and providing direction to the Information security and compliance programs as well as internal controls related to information security and associated regulatory requirements. This position is an information security and related security controls subject matter expert and works closely with Information Security leadership, IT peers, and business partners to help ensure information security goals are met and security controls are operating as intended. This role helps to ensure continuous compliance with enterprise information security policies, standards, and procedures as well as protect the confidentiality, integrity, and availability of information assets.
Essential Functions and Key Responsibilities:
Security Engineering & Operations
Support the goals of the information security program and help carry out information security strategy
Support the implementation and administration of information security tools and services, including SIEM, EDR, firewalls, vulnerability scanners, and IAM systems
Design, configure, and manage secure infrastructure and applications across on-prem and cloud environments (preferably Azure/M365 and OCI).
Lead vulnerability management efforts and remediation follow-up across systems and applications
Investigate and develop technical solutions and automation to improve security operations and reduce manual effort
Monitor, triage, and respond to security alerts and incidents; lead incident response efforts and maintain documentation
Governance, Risk & Compliance (GRC)
Support the organization's compliance with internal policies and external requirements (e.g., GDPR, PCI, ISO 27001).
Lead or support security-related audits, assessments, and evidence collection for internal and external stakeholders
Develop and report on meaningful and actionable information security metrics that support strategy
Write comprehensive reports including assessment-based findings, outcomes, and propositions for further system security enhancement
Help maintain and improve the information security policy framework, standard operating procedures, and internal controls
Coordinate and oversee work performed by vendors including all contracted professional services
Conduct or support third-party security reviews and vendor risk assessments as needed
Security Awareness & Collaboration
Develop and deliver security awareness training and communications for employees
Act as information security subject matter expert including mentoring and cross-functional advising
Collaborate with cross-functional teams on secure architecture, project reviews, and IT initiatives
Knowledge and Skills Requirements:
Strong understanding of core security technologies: firewalls, endpoint protection, SIEM, DLP, vulnerability scanners, identity and access management, etc.
Technical proficiency with Windows, Linux, and networking concepts; scripting or automation (e.g., PowerShell, Python) a plus.
Expertise in designing secure networks, systems and application architectures
Familiarity with cloud security principles and tools (Microsoft Azure, Microsoft 365)
Experience with regulatory and compliance requirements (e.g., ISO 27001, SOC 2, GDPR, PCI, NIST CSF)
Knowledge of common cyberattack vectors, threat detection, and mitigation strategies
Strong written and verbal communication skills in English; ability to convey technical content to non-technical stakeholders
Self-motivated and able to work independently in a dynamic and distributed team environment
Education, Work Experience, and Professional Certifications:
Bachelor’s degree in Computer Science, Information Security, or a related field OR equivalent experience
Minimum 5 years of experience in Information Security
Professional certifications (e.g., CISSP, CISM, CEH, GIAC, or similar) preferred
Experience working in a global organization with third-party service providers is a plus
Work Environment / Physical Requirements:
Standard office conditions with extensive computer use
May require occasional extended hours to support critical issues
Ability to work effectively in an environment with frequent interruptions and shifting priorities
Light physical effort; may involve lifting/moving lightweight materials occasionally
TaylorMade is a performance driven organization and our total rewards approach to compensation is designed to support this. We consider many factors in determining base compensation, including position scope, job related knowledge, education, skills, experience, and work location. The expected annual base pay range for this position is $125,000 - $140,000. Additional benefits, such as health & wellness, performance bonuses, product discounts, holidays, paid time off, etc. may also be offered in accordance with our plans.
#LI-AP1
#LI- onsite
TaylorMade Golf Company is an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, religious creed, color, national origin or ancestry, physical or mental disability, medical condition, genetic information, marital status, sex, pregnancy, gender, gender identity, gender expression, age, sexual orientation, military and veteran status or any other basis protected by federal, state or local law, ordinance, or regulation.
