Security Compliance Analyst

Summary

Join RainFocus, a leading software company, as a Security Compliance Analyst. This role involves supporting the company's cybersecurity and data privacy program, focusing on compliance. Responsibilities include managing the control framework, conducting gap assessments, maintaining documentation, and responding to inquiries. The ideal candidate possesses 0-5 years of relevant experience in fields like audit/compliance or cybersecurity, a basic understanding of cybersecurity and privacy concepts, and familiarity with regulations like GDPR and ISO 27001. The position offers a remote work environment with occasional travel and competitive benefits, including competitive salaries, competitive benefits, 401k and generous PTO. Growth opportunities and mentorship are provided. RainFocus values a collaborative and confidential work environment.

Requirements

• US Citizen/Authorized to work in the US
• 0 - 5 years’ relevant experience from any field
• Basic understanding of key cybersecurity and privacy terms & concepts, including: Cryptography, Networking concepts, The primary cybersecurity risks facing multinational organizations, The primary objectives of most data privacy/protection laws and how, in general, those laws impact organizations
• Firm understanding of key cybersecurity and data privacy terms & concepts, including: The interplay between risks and vulnerabilities/threats, The role of policies in an organization
• Relevant experience with any of the following - or similar - regulations, standards and frameworks (listed alphabetically): GDPR, ISO 27001, NIST 800-53, PCI-DSS, SOC Audits

Responsibilities

• Assist with managing our control framework
• Map new regulations, contracts, etc
• Conduct gap assessments
• Maintain relevant documentation (e.g. policy and process documents)
• Monitor for, analyze and report on policy individual compliance violations and overall trends
• Assist with managing our Third Party Risk program
• Assist with audits
• Assist with risk assessments
• Respond to security and privacy inquiries
• Contribute to maturing our overall Security & Privacy Program, with a focus on the compliance aspect
• Participate in educational/mentoring activities
• Perform other tasks as determined

Preferred Qualifications

• Work comfortably in an environment that often involves highly confidential information and be able to keep such information confidential
• Work well with cross-functional teams
• Empower people to live and work securely
• A “putting people first” attitude
• Self-motivated / Proactive
• Team-player
• Good communicator
• Reliable / Dependable
• Desire to learn & be mentored

Benefits

• Competitive salaries
• Competitive benefits
• 401k
• Generous PTO
• Remote work