Remote Senior Security Compliance Analyst

Summary

Join Sumo Logic as a Senior Security Compliance Analyst and be on the cutting edge of Cloud Security and Compliance. This role is critical to Sumo Logic and will collaborate with our DevSecOps Automation and Security Operations Team as well as all lines of business at Sumo Logic to build relationships and trust across the organization.

Requirements

• The role needs to be located primarily in the US
• Supports the analysis, classification, and response to cybersecurity risks within the organization
• Support sales team with customer meetings regarding questions on Information Security and Privacy
• Must have strong skills in the following areas: Communication, Security and Privacy and the Compliance of security controls
• Ability to work and communicate across various teams and at various levels of the business is essential to this role
• Knowledge of compliance frameworks such as PCI DSS, ISO 27001, SOC 2, IRAP and NIST 800-53 / FedRAMP

Responsibilities

• Design, develop, and maintain internal controls in response to security and compliance goals: FedRAMP, SOC2, HIPAA, PCI-DSS, ISO27001, etc
• Perform security reviews and identify security gaps in architecture resulting in recommendations for inclusion in the risk mitigation strategy
• Support tooling and automation that facilitate security and compliance related activities and lead to reducing the disruption of audit events
• Lead planning, coordination and execution of 3rd party-risk assessments and audits
• Develop and maintain internal and external-facing security and compliance documentation
• Work with product and engineering teams to maintain compliance baseline in Sumo Logic products
• Work with internal teams to formulate processes in line with compliance and security controls, hold them accountable for following them, and manage throughout Risk Treatment and Remediation plans
• Provide direction to management team on compliance goals and statuses
• Drive periodic reviews, updates, and maintenance of compliance items
• Interface with external auditors and be the primary point of contact for audits
• Participate in maintenance of standard security and compliance collateral for marketing and sales activities

Benefits

• Health insurance
• Retirement benefits
• Paid time off
• Remote work, flexible hours