Sr. Cybersecurity & Compliance Engineer (Framingham, MA Hybrid)

Motorola Solutions is seeking a highly skilled and experienced Sr. Cybersecurity & Compliance Engineer to join the dynamic Rave organization. This critical role offers a unique opportunity to directly shape and uphold the highest standards of security and data privacy for our cutting-edge SaaS solutions, fundamentally contributing to our mission of public safety.

As the primary driver for internal compliance, you will be instrumental in maturing and maintaining our robust compliance posture across a diverse portfolio of industry standards, including ISO 27001, SOC 2, FedRAMP, CCCS, TX-RAMP, and GovRAMP. You will collaborate extensively across the Rave organization and with broader Motorola Solutions teams, benefiting from the deep compliance and security expertise that exists within the wider organization. This ensures our innovative SaaS solutions not only meet but consistently exceed stringent regulatory requirements. You will use the expertise and credentials gained through these compliance efforts to strategically support customer engagements in both pre-sale and post-sale environments. This position demands a blend of deep technical expertise in compliance and privacy, exceptional cross-functional communication skills, and a proactive, strategic approach to safeguarding sensitive data and fostering trust.

Your leadership and hands-on contribution will be vital in ensuring our organization remains at the forefront of security and compliance, protecting sensitive data and building unwavering trust with our global clientele. This is an exciting opportunity to lead impactful change in the security landscape of life-saving solutions.

What You’ll Do:

• Serve as Rave’s Security and Compliance subject matter expert, supporting Product Management, Engineering, Technical Operations, Customer Support, and Sales. This includes supporting the development of controls, policies, and evidence, and providing guidance to the Rave teams producing documentation for their respective areas.
• Lead compliance activities across all in-scope industry standards such as ISO 27001, SOC 2, FedRAMP, CCCS, TX-RAMP, and GovRAMP, ensuring the organization maintains continuous compliance.
• Facilitate, monitor, and drive the completion of security and compliance activities, including audit preparation, coordinating 3rd party scans, systems assessments, vulnerability scans, and security control implementation and validation. Synthesize findings, represent them to engineering and tech ops teams, create actionable tickets for remediation, and recommend solutions to keep the organization on track.
• Serve as Rave’s ISMS Project Lead, overseeing and maintaining site-level ISO 27001 certification and audit readiness across multiple SaaS platforms, including ensuring necessary supporting documentation and evidence is provided by appropriate parties and managing audits by incorporating internal subject matter experts as required.
• Coordinate risk and privacy assessments, perform gap analyses, prioritize remediation, and lead engineering-facing security refinement reviews to proactively identify and address potential vulnerabilities.
• Ensure compliance documents remain up-to-date, including system policies, procedures, controls, data maps, and customer documentation. Model efficiency in your own work, and arm subject matter experts with content, tools, and direction to minimize their effort.
• Rapidly fulfill security related inquiries, such as those presented through RFP, RFI, customer data privacy and security questionnaires, and due diligence requests.
• Actively monitor corporate security policies and tools, and identify opportunities to leverage corporate functions and assets to enhance Rave's efficiency and security.
• Stay abreast of evolving assessment standards, industry trends, methodologies, and best practices through continuous learning, leveraging professional publications, networks, and engagement with Motorola Solutions Security & Compliance peers.

What You’ll Bring

• Proficiency with common compliance and security software to include tools used with GRC, SAST, DAST, and SCA.
• Ability to rapidly establish relationships with critical stakeholders, both within Rave and other corporate departments (e.g., Corporate Security and Legal), to achieve goals.
• Demonstrated knowledge of data privacy principles and relevant regulations (e.g., GDPR, CCPA, HIPAA, FERPA and PIPEDA) with the ability to apply them in private-cloud and public-cloud environments.
• Demonstrated confidence and tact in independent client-facing interactions to effectively represent Rave Compliance with senior business and technical stakeholders.
• A drive to continuously improve the efficiency, consistency, and accuracy of compliance activities, whether executed by yourself or others. You seek, adopt, and promote AI-powered tools to achieve these goals.
• The attitude and flexibility necessary to balance compliance demands and business goals. You remove barriers and simplify processes, maximizing the time Rave spends delivering high value, innovative, and secure solutions to our customers.

Bonus Points:

• Experience with industry specific compliance programs such as HIPAA, FedRAMP, and/or GovRAMP.
• Experience supporting sales and customer-facing roles regarding Security and Compliance inquiries.
• Experience with AI/machine learning technologies is strongly preferred.
• Experience with AWS cloud infrastructure.
• Experience with Azure cloud infrastructure.
• Experience with Private Cloud hosted solutions.
• Experience with Software architecture.
• Relevant certifications such as CISSP, CISM, CISA, CRISC, or similar.