Information Security Compliance Analyst

About The Position

Requirements

• 6+ years’ experience performing risk and compliance activities or open to less with a relevant degree
• Project management experience.
• Experience managing multiple priorities independently and in a team environment to achieve goals.
• Excellent organizational, planning and time management skills.
• Excellent research and analytical skills.
• Excellent verbal and written communication skills.
• Ability to exercise good judgement and tact in dealing with Bonterra senior management.
• Proficient with technology and ability to learn our software systems, including GRC, ticketing and project management software and workflows.
• Proven track record of proactively identifying needs and implementing solutions.

Nice To Haves

• Information systems security professional certifications preferred (CRISC, CISA, CISSP, CISM, GSEC, GCFA, GCTI, CCSP, or other relevant Information Security certifications).

Responsibilities

• Perform as the primary in the executing our annual Service Organization Controls (SOC) reporting initiatives, which includes several Bonterra products.
• Works closely with other members of the Information Security Risk team.
• Works closely with control owners across the company and internal and external auditors to ensure requests are completed in a timely manner as part of the overall project management process.
• Performs technical risk assessments of third party suppliers' security and privacy controls.
• Maintains register of relevant suppliers/vendors, controls, and risks for ongoing vendor risk management activities.
• Will be responsible the play book for reporting of high risk events that involve compliance, risk and information security.
• Assists in maintaining our overall security awareness, role based security trainings and phishing simulation programs across the enterprise.
• Assists in conducting user activity audits where required.

Benefits

• We offer a comprehensive benefits package that supports your health, well-being and growth - explore full details here.
• Compensation and benefits for this role apply to full-time employees in the United States and may vary based on local standards, laws and norms.