Compliance Analyst

Summary

Join SimSpace as a temporary Compliance Analyst and play a vital role in maintaining the security of our information systems and data. This part-time (20-30 hours/week), 6-9 month position offers flexibility and the potential for extension. You will oversee GRC processes, identify and remediate risks, collaborate with cross-functional teams, and maintain compliance documentation. Success requires strong communication, analytical, and project management skills, along with experience in information security and relevant frameworks (SOC2, CMMC). The ideal candidate will be a change advocate with experience in project management and a passion for solving complex problems. SimSpace offers competitive hourly compensation ($31-$43/hour) and a commitment to a Human-Centered work environment.

Requirements

• Bachelor’s degree in Information Technology, Computer Science, or a related field
• Minimum of 2 years of experience in IT, information security or related roles
• Knowledge of information security principles, practices, and technologies, including security architecture, identity and access management, risk management, and security operations
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, SOC2, CMMC as well as those from NIST, including SP800-53
• Strong communication and collaboration skills, with the ability to communicate complex technical issues to non-technical stakeholders and work with other departments
• Strong time and project management skills, with the ability to manage multiple projects simultaneously and deliver on time, within budget, and to the required quality standards
• Strong analytical and problem-solving skills, with the ability to quickly identify and tackle complex technical issues
• Experience working with Windows, MacOS and Linux based operating systems
• Possess a forward-thinking mindset with a excitement for learning, solving complex problems and getting involved
• Ability to work on a fast paced, dynamic and multi-faceted team
• Ability to work a flexible, part-time schedule of 20-30 hours per week

Responsibilities

• Oversee the development and implementation of Governance, Risk and Compliance (GRC) processes and frameworks
• Identify organizational risks, assign remediation tasks to the appropriate employees, and track progress to resolution
• Collaborate with cross-functional teams to ensure compliance with SOC2, CMMC and other related security frameworks
• Identify, define and maintain security documentation
• Assist in the governance and execution of third party vendor security assessments
• Utilize GRC platforms to monitor compliance and streamline workflows
• Maintain a centralized repository of compliance evidence for ongoing assessments
• Conduct internal reviews to assess the effectiveness of security controls, operational processes and compliance policies

Preferred Qualifications

Professional security certifications such as CISSP, CISM, or CISA

Benefits

Compensation. Base salary range: $31/hour - $43/hour