IT Security Compliance Analyst (Partial WFH) Position Overview:
We are a leading IT Services Provider that offers Managed IT Services, Cloud Services, and Security-as-a-Service. We built and service reliable IT infrastructures for mid to large sized businesses. We have a high retention rate amongst our clients and employees. This is attributed to our passion for helping our team grow as we continue to expand. We offer full Health/Dental/Vision, Hybrid WFH schedule, 401(k) with company match, internal training programs, certification reimbursement and more.
We have been growing at a consistent rate for the last 5 years. This is why we are seeking an experienced IT Security Compliance Analyst (Partial WFH) to join our MSSP division. This is a great opportunity for a self-starter with a proven track record to develop, implement, and support various initiatives in the area of governance, risk and compliance.
The IT Security Compliance Analyst (Partial WFH) must have 5+ SOC analyst experience.
IT Security Compliance Analyst (Partial WFH) Responsibilities:
- Lead the planning, scoping, execution and documentation of audits primarily in areas associated with technology and technology-related risks (e.g., cybersecurity)
- Act as a liaison between Auditors and Engineering/IT by coordinating requests for information and coordinating responses to any observations.
- Maintain proactive ongoing compliance by utilizing GRC tool to perform periodic security tasks and checks.
- Research new security compliance requirements and assist in evaluating compliance control requirements.
- Support and monitor remediation efforts of audit findings and validate the closure by reviewing relevant evidence.
- Write detailed findings, remediation plans, and other supporting documentation
- Provide actionable, technical advice to software engineers to enhance security control design & effectiveness (including for cloud environments)
- Develop a close partnership with engineering control owners to educate them on compliance requirements and develop risk-appropriate control implementation solutions.
- Responsible for Incident Management, be readily available for: Incident documentation, ensure risk analysis and severity, manage containment, lead investigation, ensure proper notification protocol, conduct & document lessons learnt, Report on findings to then communicate them to the client.
IT Security Compliance Analyst (Partial WFH) Required Qualifications:
- MDR\SEIM\FIM management experience
- Prior experience leading or managing security audits at a SaaS/Cloud company or as a Security Auditor at an audit firm
IT Security Compliance Analyst (Partial WFH) Benefits:
- Health, Dental, and Vision Insurance
- Hybrid WFH schedule (2-3 days at home)
- 401(k) with company match
- $50 Phone Reimbursement
- Internal Training Program
- Certification Reimbursement
- PTO and Paid Holidays