RSI Security

Title: Marketing Coordinator Location: Remote Job Description: Role Title: Marketing Coordinator Department / Seat Name: Marketing Manager Reports To (LMA): Marketing Manager Salary: $60,000-$65,000 (Full-Time; W2) Location: Hybrid (DFW Dallas Fort Worth, TX required) *** Please ensure you read through the entire job posting and you also understand the work model, expectations, requirements, location, and qualification requirements for this role. *** About Us RSI Security is a trusted leader in cybersecurity compliance and assessment, helping organizations navigate complex security frameworks and safeguard their operations. We combine deep expertise with innovative tools to deliver tailored solutions that empower businesses to thrive in a rapidly evolving digital landscape. Our culture emphasizes collaboration, continuous improvement, and professional growth. Team members contribute directly to impactful projects in a supportive, forward-thinking environment. About the Role The Marketing Coordinator is responsible for planning, coordinating, and executing both internal and external events from start to finish including logistics, vendor coordination, budgeting, and on-site facilitation. This role also supports the marketing team with day-to-day operations such as content creation and posting, campaign coordination, and general project support. The ideal candidate is a highly organized multitasker with strong communication skills, creative initiative, and a passion for delivering seamless events and impactful marketing campaigns that elevate the brand experience. A high-speed production support role responsible for executing design and content tasks from established templates. This role focuses on turning pre-defined directions into finished marketing assets quickly, accurately, and consistently. This position does not own strategy, campaign planning, or creative direction. This is a hybrid position based in the Dallas–Fort Worth (DFW) area. Candidates must be located in DFW and able to travel to and attend in-person events, including some evenings and weekends. Production: ● Work from established brand templates to produce fast-turn marketing assets across multiple channels ● Create and edit social media graphics using Adobe Creative Suite (Photoshop/Illustrator) ● Perform quick edits including text updates, image swaps, resizing, and formatting adjustments ● Produce multiple graphics efficiently with a strong focus on speed, accuracy, and brand consistency Copywriting (Execution Support Only): ● Draft basic marketing copy for blogs and LinkedIn posts based on provided outlines or direction ● Assist in repurposing existing content into shorter or alternate formats for different channels ● Produce clean first-draft content for review, editing, and final approval by marketing leadership Marketing Asset & Content Support: ● Maintain and organize marketing creative files, templates, and asset libraries ● Ensure proper naming, versioning, and storage of all marketing materials ● Support retrieval and reuse of existing assets for ongoing campaigns and initiatives Event Support (Light Execution Only): ● Assist with basic event-related tasks such as ordering materials and tracking deliveries ● Help ensure event deliverables are ordered, shipped, and received on time ● Maintain simple checklists for event logistics as directed by marketing leadership Ideal Candidate Profile ● Strong proficiency in Adobe Creative Suite with comfort working from templates ● Highly detail-oriented with strong execution speed and accuracy ● Comfortable producing repetitive, high-volume creative work quickly ● Basic copywriting ability with willingness to take direction and revise quickly ● Familiarity with HubSpot or similar CRM tools (basic navigation level) ● Strong organizational skills for managing files, templates, and marketing assets ● Comfortable working in a fast-paced, execution-heavy environment with clear direction ● Ability to operate independently from structured briefs with minimal clarification loops To ensure clarity across teams, this role is intended to support executional workload only. It does not include ownership of marketing strategy, campaign planning, brand direction, or client-facing decision-making. This adjustment is being made to redistribute repetitive production work within RSIS due to current team structure. All output from this role will continue to be reviewed and approved by marketing leadership prior to publication. As the organization evolves and additional leadership roles are added, responsibilities may be revisited and rebalanced across the team. Clean Responsibility Boundary ● Marketing leadership retains ownership of: strategy, campaign direction, messaging, approvals, and brand standards ● Production role owns: execution of repeatable, template-based, or pre-defined work only

• Read/parse RFPs, develop requirements matrices, and conduct research on requesting organizations • Create clean, compelling proposals, statements of work, and RFI/SSN responses • Take ownership of delegated RFPs throughout the proposal development/delivery lifecycle • Help maintain/improve/develop proposal templates • Research and understand current and new service offerings • Ensure consistency in tone, voice, company mission, and brand • Collaborate with graphic designers to identify opportunities for compelling graphics • Coordinate with subject matter experts to obtain technical content • Communicate effectively, efficiently, often

• Provide independent industry perspective on impartiality risks • Review high and critical structural risks presented by management • Assess whether commercial models could create undue influence • Evaluate revenue concentration and market dependency risks • Ensure industry credibility of certification and inspection decisions • Challenge management where independence safeguards appear insufficient • Participate in quarterly committee meetings

• Lead and execute PCI DSS assessments • Develop clear, structured reports documenting compliance status • Guide clients in preparation for assessments • Contribute to or lead the development and review of policies and procedures • Support pre-sales activities by participating in client discussions

• Review High and Critical impartiality risks presented by management • Evaluate structural independence safeguards and separation controls • Challenge management where risk mitigation is insufficient • Ensure no single interest predominates within assessment governance activities • Escalate unresolved structural or independence risks to the Governing Authority • Participate in periodic meetings (minimum quarterly) • Provide independent perspective on federal cybersecurity assessment governance, impartiality, and oversight risks

• Support cloud service providers in preparing for FedRAMP authorization through readiness assessments • Perform Gap Assessments & Control Analysis • Develop key deliverables such as System Security Plans (SSP), POA&Ms • Translate NIST SP 800-53 control requirements into practical implementations within cloud environments • Provide guidance on security architecture and control design • Lead technical discussions and workshops with client stakeholders • Contribute to RSI’s development of FedRAMP assessment methodologies

WE ARE HIRING Proposal Manager – Cybersecurity & Compliance Reports To: Managing Director Type: Full Time – W2 (US-Based Only) Location: Remote About Us RSI Security is a leading cybersecurity and compliance firm helping organizations manage risk and achieve compliance across major security frameworks including PCI DSS, SOC 2, ISO 27001, CMMC, FedRAMP, and HITRUST. We work with organizations ranging from high-growth technology companies to regulated enterprises and government contractors. Our team combines deep technical expertise with a consultative approach to help clients strengthen security and meet complex compliance requirements. About the Role RSI Security is seeking a Proposal Manager to lead the development and submission of compelling, compliant proposals for cybersecurity and compliance services.This role is responsible for managing the end-to-end RFP lifecycle, including evaluating opportunities, coordinating internal subject matter experts, developing proposal content, and ensuring timely submission of high-quality responses. The ideal candidate has experience writing or managing proposals for cybersecurity, IT consulting, or compliance services and is comfortable translating complex technical services into clear and persuasive proposal responses. What You’ll Do - Manage the full lifecycle of RFP/RFI/RFQ responses for cybersecurity and compliance services - Evaluate opportunities and collaborate with leadership to prioritize qualified proposals - Develop and edit proposal content describing RSI’s cybersecurity services and methodologies - Coordinate with sales, delivery teams, and subject matter experts to gather technical input - Ensure proposals meet solicitation requirements, compliance standards, and submission deadlines - Maintain and improve proposal templates, response libraries, and documentation - Support development of service scope and pricing structures aligned with proposal requirements - Track proposal submissions and maintain records within proposal management tools What You’ll Bring - 5+ years of proposal management or RFP response experience - Experience supporting proposals for cybersecurity, IT services, or compliance consulting - Familiarity with cybersecurity frameworks such as: - PCI DSS - SOC 2 - ISO 27001 - CMMC - FedRAMP - HITRUST - Strong ability to translate technical information into clear written proposals - Experience coordinating cross-functional teams during proposal development - Excellent written communication and document management skills Mindset We Value - A proactive and solution-oriented mindset - Strong organizational and project management skills - High attention to detail in technical documentation - Ability to manage multiple deadlines under pressure - Strong collaboration with technical and non-technical stakeholders

WE ARE HIRING Information Security Assessor - QSA Certified Location: Remote – USA Type: 1099 Contractor Compensation: Competitive salary + commission eligibility Travel: Potential travel to client sites as required About Us RSI Security is a trusted leader in cybersecurity compliance and assessment, dedicated to helping organizations navigate complex security frameworks and safeguard their operations. We are committed to operational excellence, leveraging innovation and expertise to deliver tailored solutions that empower businesses to thrive in a rapidly evolving digital landscape. Our culture emphasizes collaboration, continuous improvement, and professional growth, offering our team members the opportunity to contribute meaningfully to impactful projects in a supportive and forward-thinking environment. About the Role The Information Security Assessor leads and delivers formal assessments and consulting services across multiple cybersecurity frameworks, with a primary focus on PCI DSS. This role requires hands-on experience conducting QSA-led assessments, drafting compliance documentation, and guiding clients through full assessment lifecycles. The ideal candidate holds an active PCI QSA certification, has a strong background in compliance and information security, and excels in independent execution as well as collaborative client engagement. What You’ll Do - Lead formal PCI DSS assessments, including audits, readiness assessments, and gap analyses. - Conduct evidence reviews, stakeholder interviews, technical validation, and documentation sampling. - Draft and deliver comprehensive Reports on Compliance (ROCs) and Attestations of Compliance (AOCs). - Provide advisory services for clients navigating PCI, SOC 2, ISO 27001, HIPAA, NIST, and HITRUST initiatives. - Collaborate cross-functionally with advisory and technical teams to support integrated engagements. - Mentor junior team members in PCI methodology and cybersecurity best practices. - Stay current with evolving standards and updates from the PCI Security Standards Council (SSC). - Represent RSI Security in client meetings and contribute to long-term client success. What You’ll Bring - Active PCI QSA certification - required. - Bachelor's degree in cybersecurity, information systems, or equivalent experience. - 3–5+ years of experience in security assessments, compliance, or consulting. - Demonstrated experience with ROC/AOC development and delivery. - Familiarity with additional frameworks: SOC 2, ISO 27001, NIST, HIPAA, HITRUST. - Ability to perform gap analyses, risk assessments, and control evaluations. - Strong technical and written communication skills, including report writing and presentations. - Self-driven with the ability to manage multiple engagements independently. - Strong organizational and time management skills. Mindset We Value - Ownership and accountability — drive results without micromanagement. - Client-first attitude with a solutions-oriented mindset. - Calm and focused under pressure; flexible with shifting priorities. - Continuous improvement and proactive problem-solving mindset. - Team collaboration and knowledge sharing. - Humility, integrity, and professionalism in all client interactions. What We Offer - Competitive salary and commission/bonus opportunities. - 100% remote work flexibility. - Collaborative and inclusive team culture. - Professional development and upskilling opportunities. - Opportunity to work on diverse and impactful cybersecurity engagements. RSI Security is proud to be an Equal Opportunity Employer. We value equity, inclusion, and diversity as part of our broader commitment to respecting fundamental human rights across our value chain. The Company will consider qualified applicants with arrest and conviction records, consistent with applicable laws. For more information on RSI Security, please visit www.rsisecurity.com or our LinkedIn page. On our career site, you will also find the steps guiding you through our hiring process.

WE AREHIRING External AI / Governance Subject Matter Expert Impartiality Committee Member (ISO/IEC 17021-1 / 17020 / 42006) Location: 100% Remote – Global Type: Independent Contractor (Committee Appointment) Pay: Stipend / Per-Meeting Compensation Travel: None (virtual) About Us: RSI Security operates an independent Certification Body (CB) aligned with ISO/IEC 17021-1 and pursuing accreditation for ISO/IEC 42001 (Artificial Intelligence Management Systems). RSI also operates CMMC C3PAO Level 2 assessment activities aligned with ISO/IEC 17020 requirements. To preserve independence and accreditation integrity, RSI maintains formal structural separation between certification, inspection, and advisory entities. Oversight of impartiality risks is exercised through an independent Impartiality Committee. About the Role: The External AI / Governance Subject Matter Expert serves as a voting member of the RSIS Impartiality Committee. This is a governance oversight role — not an audit, consulting, advisory, sales, or certification decision function. The Committee provides independent oversight of: - Structural impartiality risks - Commercial influence risks - Advisory-to-assessment separation controls - Conflict-of-interest trends - Governance adequacy under ISO/IEC 17021-1 and ISO/IEC 17020 Committee members do not: - Participate in audit execution - Perform certification decisions - Engage in consulting for RSIS certification clients - Influence engagement acceptance decisions Key Responsibilities - Review High and Critical impartiality risks presented by the Scheme Manager - Evaluate structural independence safeguards - Challenge management where risk mitigation is insufficient - Ensure no single interest predominates within the Certification Body - Escalate unresolved structural risks to the Governing Authority - Participate in periodic meetings (minimum quarterly) - Provide technical perspective on AI governance risk concentration Governance Authority Committee members: - Hold voting authority within the Committee - Operate independently from management - May request documentation necessary to discharge oversight responsibilities - Have authority to escalate unresolved concerns in accordance with the Committee Charter Competence Requirements Candidates must demonstrate: - 10+ years in AI governance, enterprise risk, data governance, cybersecurity governance, or regulatory oversight - Demonstrated understanding of AI lifecycle governance and risk management - Familiarity with management system oversight principles - Ability to operate at board / governance oversight level - Independence from RSI advisory revenue streams Preferred: - Experience with ISO standards (27001, 9001, 42001, 17021, 17020) - Experience serving on governance boards or oversight committees - Background in regulatory, public interest, or independent risk oversight roles Independence Requirements - Prior to appointment, candidates must: - Complete formal Conflict of Interest screening - Disclose advisory or financial relationships with RSI entities - Commit to ongoing annual independence attestations - Agree not to perform advisory services for RSIS certification clients during tenure Cooling-off and recusal requirements apply where applicable. Term & Review Appointments are for a two-year term, renewable once, subject to continued independence verification and performance review in accordance with the Impartiality Committee Charter. RSI Security is an Equal Opportunity Employer. We prioritize competence, qualifications, and the integrity of the certification process in all hiring decisions.

WE ARE HIRING AI Governance Technical Expert (ISO/IEC 42001) ​​​​​Location: 100% Remote – Global Type: Contracted / Project-Based / Potential Permanent Pay: Competitive; Based on experience and authorized technical scope Travel: Minimal (Remote audit model; periodic participation in accreditation body witness audits when assigned) About Us: RSI Security is a leader in cybersecurity compliance and conformity assessment. We operate an independent Certification Body (CB) aligned with ISO/IEC 17021-1 requirements and are currently pursuing accreditation for ISO/IEC 42001 (Artificial Intelligence Management Systems). We maintain strict separation between our certification and advisory entities to protect the integrity and independence of every audit. Our mission is to build a rigorous, globally respected AI governance certification program that ensures AI Management Systems (AIMS) are assessed with impartiality and technical depth. About the Role: As an AI Governance Technical Expert, you will support ISO/IEC 42001 certification audits by providing specialized subject-matter expertise related to AI lifecycle governance, data governance, and model oversight. This is a Certification Body support role and is distinct from consulting, advisory, implementation, or audit leadership functions. Technical Experts supplement audit team competence but do not independently determine conformity, grade nonconformities, sign audit reports as Audit Team Leader, or participate in certification decisions. You will contribute structured technical analysis to audit teams evaluating AI lifecycles, including design, development, validation, deployment, monitoring, and decommissioning within SaaS and enterprise environments. Technical Experts may pursue formal auditor authorization through RSI’s documented competence and authorization framework. Any transition to an auditor role requires full completion of competence evaluation, training, witness audit requirements, and formal authorization prior to performing audit or certification decision activities. What You’ll Do - Provide Technical Lifecycle Expertise: Support audit teams in evaluating AI governance controls across the lifecycle, including model governance, data governance, human oversight, and risk integration. - Review Technical Artifacts: Analyze technical documentation, system descriptions, governance frameworks, validation records, and lifecycle evidence to provide structured input to the Audit Team Leader. - Participate in Audit Interviews: Contribute domain expertise during interviews related to AI model development, validation practices, monitoring controls, and enterprise governance structures. - Support Risk-Based Evaluation: Assist in assessing alignment with ISO/IEC 23894 AI risk management principles and integration into lifecycle governance processes. - Operate Within Impartiality Guardrails: Comply with RSI’s formal independence and conflict-of-interest controls, including cooling-off requirements and periodic attestations. - Engage Under Oversight: Participate in accreditation body witness audits when assigned, demonstrating technical competence under structured external oversight. Competence & Authorization Authorization as a Technical Expert is granted through RSI’s documented competence evaluation and authorization framework. Candidates will undergo structured evaluation of: - AI Technical & Lifecycle Competence: Demonstrated understanding of AI lifecycle stages, model governance concepts, data governance principles, and risk-based AI oversight. - Sector / Contextual Competence: Familiarity with SaaS / Enterprise AI governance environments, including enterprise IT governance structures and organizational oversight models. - Independence Verification: Completion of conflict-of-interest screening and confirmation of no prohibited advisory involvement. - Ongoing Monitoring: Performance review by Audit Team Leaders, quality review of technical input, and periodic independence attestation. Technical Experts are authorized within defined technical categories and sector scopes. Assignment shall not occur outside authorized domains. What You’ll Bring - Experience: 7+ years in AI governance, data governance, model risk management, cybersecurity governance, enterprise risk, or related technical oversight functions. - AI Governance Depth: Strong understanding of AI lifecycle stages, model validation practices, data lifecycle controls, documentation governance, and human oversight mechanisms. - Enterprise Context Awareness: Familiarity with SaaS architectures (high-level), enterprise IT governance structures, and organizational AI oversight frameworks. - Structured Analytical Thinking: Ability to evaluate evidence objectively and provide disciplined, audit-support input rather than advisory recommendations. - Professional Integrity: Commitment to independence, impartiality, and operating within clearly defined role boundaries. Why Join RSI? You will be joining one of the emerging leaders building ISO/IEC 42001 certification capabilities globally. We offer a 100% remote work environment, access to structured audit workflow tools, and a culture that values technical precision and ethical independence above all else. RSI Security is an Equal Opportunity Employer. We prioritize competence, qualifications, and the integrity of the certification process in all hiring decisions.