Compliance Analyst

Summary

Join SimSpace as a temporary Compliance Analyst for a 6-month contract (with potential extension) and collaborate with cross-functional teams to ensure compliance with SOC2, CMMC, and other security frameworks. You will be responsible for maintaining the security of information systems, applications, and data, overseeing GRC processes, identifying organizational risks, and maintaining compliance documentation. This role requires strong communication, analytical, and problem-solving skills, as well as experience in project management. The ideal candidate will be a change advocate with experience in technology transformation. The position offers a full-time schedule and a competitive compensation package.

Requirements

• Bachelor’s degree in Information Technology, Computer Science, or a related field
• Minimum of 2 years of experience in IT, information security or related roles
• Knowledge of information security principles, practices, and technologies, including security architecture, identity and access management, risk management, and security operations
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, SOC2, CMMC as well as those from NIST, including SP800-53
• Knowledge of compliance platforms, such as Drata or Vanta
• Strong communication and collaboration skills, with the ability to communicate complex technical issues to non-technical stakeholders and work with other departments
• Strong time and project management skills, with the ability to manage multiple projects simultaneously and deliver on time, within budget, and to the required quality standards
• Strong analytical and problem-solving skills, with the ability to quickly identify and tackle complex technical issues
• Experience working with Windows, MacOS and Linux based operating systems
• Possess a forward-thinking mindset with a excitement for learning, solving complex problems and getting involved
• Ability to work on a fast paced, dynamic and multi-faceted team
• Ability to work a full-time schedule
• United States Citizenship is required for this role

Responsibilities

• Vendor Management - conduct security reviews for historical vendors and process new vendors
• Risk Management - perform risk assessments by filling out details, treatment plan, assigning risk scores and other functions
• Control Tracking - ensure failing controls are updated as necessary with evidence to keep maintain SOC2 compliance
• Audit Preparation - assist in preparing for, and maintaining, compliance against ongoing security audits
• User Access Reviews - perform regularly schedule user access reviews on SimSpace systems
• Evidence Library - review, update evidence and assign owners to evidence, link evidence to controls, set renewal dates, etc
• CMMC - review Plan of Action and Milestones (POA&M) and assist in scheduling necessary remediations
• Policies & Processes - review and update existing policies and processes
• Vulnerability Management - review scan results, coordinate with stakeholders, and ensure remediation
• Incident Response - review, triage and respond to security alerts and incidents

Preferred Qualifications

Professional security certifications such as CISSP, CISM, or CISA

Benefits

• Compensation. Base pay range: $31-$45/hour, reflecting our confidence in your expertise and impact
• Health & Wellness. Comprehensive medical, dental, and vision benefits, plus savings plans—coverage starts on day one!
• Mental Health Support. Access to company-paid counseling, coaching, and resources for you and your family through Spring Health
• Peloton Interactive Wellness Program: Full- and partial- subsidized membership plans and equipment discounts to help you reach your personalized fitness goals
• Continuous Learning: Access a LinkedIn Learning membership to prioritize your personal and professional development
• Social Connections: Monthly reimbursements for meaningful connections with teammates through our SocialSpace Community
• Extra Perks: Legal plan coverage, pet insurance, wellness reimbursements, and more to simplify life’s details