IT Security & Compliance Analyst

Fortinet-posted about 1 year ago
$150,000 - $175,000/Yr
Full-time • Senior
Sunnyvale, CA
Publishing Industries
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The IT Security & Compliance Analyst at Fortinet plays a crucial role in ensuring the organization adheres to security policies and compliance frameworks. This position involves policy governance, risk assessments, third-party risk management, and the implementation of compliance frameworks and certifications. The analyst will work collaboratively with various departments to enhance security measures and maintain compliance with industry standards.

  • Develop, review, and maintain IT security policies and procedures in alignment with industry standards and regulatory requirements.
  • Conduct regular risk assessments to identify vulnerabilities, threats, and impacts to IT assets and operations.
  • Collaborate with various departments to develop and implement risk management strategies, including risk mitigation plans and monitoring processes.
  • Perform due diligence and risk assessments on third-party vendors to ensure compliance with security policies and frameworks.
  • Assist in the implementation and maintenance of compliance frameworks and certifications (SOC 2, HIPAA, ISO 27001/2017/27018, NIST 800-53, FedRamp).
  • Maintain accurate documentation of compliance activities, risk assessments, and remediation efforts.
  • Prepare reports for management and stakeholders.
  • Stay current with industry trends, regulations, and best practices in IT security and compliance.
  • Plan, execute, and manage internal audits to assess compliance with ISO 27001 standards and other relevant frameworks.
  • Bachelor's degree in information security, Computer Science, or a related field.
  • 5+ years of experience in IT security, compliance, or risk management.
  • Strong knowledge of security compliance frameworks and standards (SOC 2, HIPAA, ISO 27001/27017/27018, NIST 800-53, etc).
  • Experience with risk assessment methodologies and tools.
  • Familiarity with third-party risk management processes.
  • Excellent analytical, problem-solving, and communication skills.
  • Experience with GRC tools.
  • Relevant certifications (CISSP, CISM, CRISC, or equivalent) are a plus.
  • Experience with GRC tools.
  • Relevant certifications (CISSP, CISM, CRISC, or equivalent) are a plus.
  • Paid holidays
  • Disability insurance
  • Health insurance
  • Dental insurance
  • 401(k)
  • Vision insurance
Track Jobs with Teal

Job Search Resources

AI Resume Builder
IT Security Analyst Resume Examples
IT Security Analyst Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service