About Secure Quantum
Secure Quantum is an Applied Quantum company that not only delivers technical solutions in quantum-safe security, but also guides organizations through the compliance and governance aspects of adopting these new technologies. We recognize that preparing for quantum threats isn’t just a technical challenge – it’s also a matter of meeting emerging regulatory standards and industry best practices. Secure Quantum’s team includes policy analysts, compliance experts, and seasoned cybersecurity consultants who ensure that our clients’ quantum security journeys align with legal, regulatory, and ethical requirements. We stay on top of developments in standards (like NIST’s post-quantum cryptography standards) and legislation to help our clients navigate the evolving compliance landscape confidently.
Job Summary
We are looking for a Quantum Security Compliance Specialist to ensure that both our internal projects and our clients’ quantum-readiness initiatives meet all relevant security standards and regulatory requirements. In this role, you will monitor and interpret new guidelines related to cryptography and quantum computing (for example, updates from government cybersecurity agencies or international standards bodies). You will advise our consulting teams and clients on how to incorporate these requirements into their transition plans – whether it’s documentation needed for audits, specific controls to implement, or timelines to be aware of. You will also play a key role in developing Secure Quantum’s internal policies and best practices for delivering services in a compliant and ethically responsible manner.
Key Responsibilities
- Regulatory Monitoring: Stay up-to-date on global regulations, government directives, and industry standards related to cybersecurity and cryptography that could be affected by quantum computing. Examples include NIST’s cryptographic standards (e.g., the roll-out of post-quantum cryptographic standards), data protection laws that dictate encryption standards (GDPR, HIPAA, etc.), and sector-specific requirements (like banking regulations or defense contracting standards that mandate certain encryption levels).
- Compliance Advisory for Projects: During client engagements, advise on compliance requirements that must be met. For instance, if a client is in finance or healthcare, ensure that our recommended quantum-safe solutions will satisfy relevant regulatory bodies and that the client is prepared to demonstrate compliance (through documentation, configurations, testing evidence, etc.).
- Policy Development: Help develop and maintain Secure Quantum’s internal policies and procedures around quantum security services. This may include creating guidelines for cryptographic inventory processes, data handling standards for quantum labs or simulations, and ensuring our consulting practices align with certifications like ISO 27001 or SOC 2 where applicable.
- Audit Support: Assist clients (and internal teams) in preparing for audits or assessments that involve cryptography. This could involve assembling required documentation (like cryptographic inventories, risk assessment reports, migration plans), reviewing configurations or evidence before an audit, and answering auditor questions about how quantum risks are being managed.
- Training & Awareness: Provide training and awareness sessions on compliance topics to both internal staff and client teams. For example, educate consultants on new compliance requirements so they can incorporate them into their deliverables, or brief a client’s compliance department on what quantum-safe cryptography means for their existing policies.
- Documentation: Ensure all compliance-related documentation is thorough and up-to-date. This includes maintaining a repository of the latest regulations and standards, creating checklists or templates for common compliance tasks in quantum security projects, and writing reports or memos on compliance status for client projects.
- Interface with Regulators/Standards Bodies: Where appropriate, engage with regulatory bodies or standards organizations. This might mean attending standards meetings, contributing comments to draft regulations (on behalf of Secure Quantum or clients), or helping clients respond to inquiries from regulators regarding their quantum readiness.
Qualifications
- Experience: 5+ years of experience in cybersecurity compliance, IT audit, or governance roles. Experience with compliance in high-regulation industries (finance, healthcare, government contracting, etc.) is highly valuable. Any experience related to cryptography compliance (like managing FIPS 140-2 validations, or ensuring encryption meets specific standards in audits) will be a strong asset.
- Knowledge: Strong knowledge of information security management frameworks and standards (e.g., ISO 27001, NIST SP 800-series, PCI-DSS, GDPR requirements for encryption). Familiarity with the concepts of post-quantum cryptography and how they might impact current compliance requirements (for example, understanding that RSA will eventually need to be replaced and how that ties into compliance timelines).
- Analytical Skills: Ability to interpret regulatory language and technical standards and translate them into actionable controls or steps for technical teams. Keen attention to detail in reviewing policies, configurations, and documentation to ensure nothing is overlooked from a compliance perspective.
- Communication: Excellent communication and writing skills. Able to write clear policies, guidelines, and audit reports. Can confidently explain requirements and their rationale to both technical professionals and non-technical stakeholders (like legal counsel or executive management).
- Collaboration: Comfortable working across multiple teams, including technical engineering teams, legal or compliance departments of clients, and our own management. Able to diplomatically enforce compliance needs while maintaining good working relationships.
- Certifications/Education: Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, or a related field. Relevant certifications such as CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), or CISSP (especially with the ISSMP concentration for management) are strongly preferred. Any specific training or certification in privacy/data protection (like CIPP/E for GDPR) or in cryptography is a plus.
What We Offer
- Influential Role: A chance to shape how cutting-edge technology adoption intersects with compliance and policy – your work ensures that innovation at Secure Quantum and our clients is done responsibly and meets high standards.
- Interdisciplinary Team: Work alongside technologists and business leaders, bridging the gap between deep technical work and regulatory oversight. This cross-functional exposure enhances your understanding and impact.
- Competitive Compensation: Competitive salary with benefits, and recognition of the importance of compliance roles with opportunities for performance bonuses.
- Professional Development: Support for attending conferences, obtaining or renewing relevant certifications, and staying educated on the latest in both cybersecurity compliance and quantum tech developments. You’ll be encouraged to become a thought leader in the space where tech and policy meet.
- Flexible Work Arrangements: We value work-life balance and trust our professionals. Flexible hours and remote work options are available, as long as you can effectively collaborate with teams and meet client needs.
How to Apply
If you have a strong foundation in cybersecurity compliance and are excited about the unique challenges and opportunities that quantum computing brings to this field, we invite you to apply. Please send your resume and a cover letter highlighting your relevant compliance/audit experience and your interest in quantum security. If you have experience with specific regulations or have led compliance projects related to cryptography, please elaborate on that in your application.
Join Secure Quantum and ensure that the future of cybersecurity is not only innovative but also accountable and compliant. Help our clients and our team navigate the quantum era with confidence and integrity.