IT Security Compliance Auditor

Schedule: Full Time


Location Specific Information:

IT Security Compliance Auditor

Who You’ll Work For

REEF’s mission is to connect the world to your block. We transform underutilized urban spaces into neighborhood hubs that connect people to locally curated goods, services, and experiences. With an ecosystem of 4,500 locations and a team of 15,000 people, REEF is the largest operator of mobility, logistics hubs, and neighborhood kitchens in North America. Together we are leveraging the power of proximity to keep our communities moving forward in a sustainable and thoughtful way.

REEF Technology has reimagined the role of a parking facility. We are the largest network of parking lots in North America, believing these locations can do a lot more than just store your car. They serve as buffers for high density, high activity areas and, as such, alleviate congestion and the ensuing pollution. But, with the explosive growth of the sharing and on-demand economy, it is expected that the need for parking to solely store cars will be outgrown by other needs. 

We are part of SoftBank, and its portfolio of leading companies transforming business and commerce at the cutting edge of technology in the world today.


What You’ll Do

The IT Security Compliance Auditor (ITSCA) is responsible for creating and/or maintaining security policies and procedures, identifying risks, and ensuring IT controls and operational processes are in place to mitigate identified risks, as well as the tracking and reporting of compliance gaps to closure.

We are looking for a unique balance of skills across security, compliance and privacy functions including risk assessments, IT audits, incident response, business continuity planning, privacy impact assessments, data privacy compliance, security/privacy awareness training, and problem-solving. This is an opportunity to gain hands-on experience across security, privacy, audit, and risk management. If you have a knack for program management and collaborating with people both internally and externally, we’ve got an IT Security Compliance Auditor role just for you!


IT Guru

-  Able to stay current with cybersecurity regulatory landscape to account for changing security compliance circumstances and maintain technical proficiency via self or formal training

-  Strong understanding of IT security best practices by applying depth and breadth of expertise in multiple domains and security disciplines

-  General knowledge of: PCI DSS 3.2.1, applicable security / privacy controls, Sarbanes-Oxley (SOX) 404, ISO/IEC 27000 family of standards, NIST 800-53, NIST cybersecurity framework, and COBIT

-  General knowledge of common application security architecture and vulnerabilities (e.g. OWASP Top 10), attack techniques and remediation tactics/strategies

-  Application security, database technologies used to store enterprise information, directory services, financial information, and information systems auditing


Manage Internally and Externally

-  Capable of working with technical and non-technical resources -- able to partner with multiple business groups, senior managers, and senior network architects/ engineers

-  A track record in the successful management of programs and collaboration with people, both internal and external, as well as demonstrated complex program/project/vendor management skills

-  Strong organizational skills, ability to effectively manage multiple, competing projects while achieving targeted results


What We Want from You

-  Bachelor's degree in business administration, computer science, information technology, law or legal studies, or a related field of study, or equivalent experience


-  3+ years of IT experience - security governance, regulatory governance and/or IT audit preferred


-  Relevant postsecondary education and/or industry standard certifications preferred (i.e., CISA, CISM, CISSP, CompTIA, ISACA, ISC2, SANS Institute/GIAC, PCIP)


-  Agile, versatile, flexible and the ability to work with constantly changing priorities


-  Strong understanding of applicable practices relating to data privacy and protection


-  Strong verbal and written communication skills, especially in the areas of presentation and interaction with people at all levels across an organization

-  Proficient in MS Office Suite and possess ability to write "high quality" documentation and/or presentations

-  Strong audit and compliance assessment skills, ability to effectively define gaps, evidence and remediation requirements while achieving targeted delivery results

-  Basic knowledge of Security Analysis (manual and leveraging automated scanning tools)

-  Audit and assessment methodologies, procedures and best practices that relate to information networks, systems, and applications

-  Track record of developing and implementing comprehensive strategic response and recovery strategies, plans and procedures

-  Strong understanding of applicable practices relating to data privacy and protection


What We’ll Provide


Life and Disability
Paid Time Off (PTO)




The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

- Frequently operate small office equipment such as a computer, tablet, and copier/printer, telephone.

-  Work is performed in a professional office environment.


Work is performed indoors for extended periods of time including up to the entire duration of shift.

REEF Technology is an equal opportunity employer, and we value diversity at our company. REEF does not discriminate on the basis of race, religion, color, sex, national origin, gender identity, gender expression, sexual orientation, age, marital status, veteran status, or disability status. REEF complies with all applicable equal employment opportunity legislation in each jurisdiction in which it operates.

Personal Information
Title *
First Name *
Middle Name
Last Name *
Address *
City *
Zip/Postal Code *
Email *
Confirm Email *
Primary Phone * *
Is Primary Phone a Cellphone?
Secondary Phone
Cellular Phone *
Cell Phone Service Provider
Where did you hear about us? *
Availability *


Choose File
Resume upload is required

Password Information

Create User Account to enable later access to your application status page

Password must contain at least 4 characters and no more than 15 characters and no characters other than letters, numbers and the underscore may be used

Confirm Password

By applying you agree to receive email and/or texts from us about your application status and our available jobs.

Powered by: