Information Security Compliance Analyst

December 26, 2024

Apply Now

Receive Emails with Similar Jobs

Bonterra

WebsiteLinkedInAll Job Openings

1001 - 5000 employees

🤝 B2B

🤝 Non-profit

🌍 Social Impact

Description

• Perform as the primary in the executing our annual Service Organization Controls (SOC) reporting initiatives, which includes several Bonterra products. • Works closely with other members of the Information Security Risk team. • Works closely with control owners across the company and internal and external auditors to ensure requests are completed in a timely manner as part of the overall project management process. • Performs technical risk assessments of third party suppliers' security and privacy controls. • Maintains register of relevant suppliers/vendors, controls, and risks for ongoing vendor risk management activities. • Will be responsible the play book for reporting of high risk events that involve compliance, risk and information security. • Assists in maintaining our overall security awareness, role based security trainings and phishing simulation programs across the enterprise. • Assists in conducting user activity audits where required.

Requirements

• 6+ years’ experience performing risk and compliance activities or open to less with a relevant degree • Project management experience. • Experience managing multiple priorities independently and in a team environment to achieve goals. • Excellent organizational, planning and time management skills. • Excellent research and analytical skills. • Excellent verbal and written communication skills. • Ability to exercise good judgement and tact in dealing with Bonterra senior management. • Proficient with technology and ability to learn our software systems, including GRC, ticketing and project management software and workflows. • Proven track record of proactively identifying needs and implementing solutions. • May hold one or more information systems security professional certifications (CRISC, CISA, CISSP, CISM, GSEC, GCFA, GCTI, CCSP, or other relevant Information Security certifications).

Benefits

• Generous Flexible Time Off (FTO) Policy • Up to 15 paid company holidays including some commemorating social justice events and self-care • Paid volunteer time • Resources for savings and investments • Paid parental leave • Paid sick leave • Health, vision, dental, and life insurance with additional access to health and wellness programs. • Opportunities to learn, develop, network, and connect