IT Security Compliance Analyst (Partial WFH) Responsibilities:
- Lead the planning, scoping, execution and documentation of audits primarily in areas associated with technology and technology-related risks (e.g., cybersecurity)
- Act as a liaison between Auditors and Engineering/IT by coordinating requests for information and coordinating responses to any observations.
- Maintain proactive ongoing compliance by utilizing GRC tool to perform periodic security tasks and checks.
- Research new security compliance requirements and assist in evaluating compliance control requirements.
- Support and monitor remediation efforts of audit findings and validate the closure by reviewing relevant evidence.
- Write detailed findings, remediation plans, and other supporting documentation
- Provide actionable, technical advice to software engineers to enhance security control design & effectiveness (including for cloud environments)
- Develop a close partnership with engineering control owners to educate them on compliance requirements and develop risk-appropriate control implementation solutions.
- Responsible for Incident Management, be readily available for: Incident documentation, ensure risk analysis and severity, manage containment, lead investigation, ensure proper notification protocol, conduct & document lessons learnt, Report on findings to then communicate them to the client.
IT Security Compliance Analyst (Partial WFH) Required Qualifications:
- MDR\SEIM\FIM management experience
- Prior experience leading or managing security audits at a SaaS/Cloud company or as a Security Auditor at an audit firm
IT Security Compliance Analyst (Partial WFH) Benefits:
- Health, Dental, and Vision Insurance
- Hybrid WFH schedule (2-3 days at home)
- 401(k) with company match
- $50 Phone Reimbursement
- Internal Training Program
- Certification Reimbursement
- PTO and Paid Holidays
