Senior Security Compliance Analyst

Filevine

7d•$132,000 - $160,000

About The Position

Filevine is a Legal AI company delivering Legal Operating Intelligence for the future of legal work. Grounded in a singular system of truth, Filevine brings together data, documents, workflows, and teams into one unified platformâwhere modern legal work happens with clarity and consistency. Powered by LOIS, the Legal Operating Intelligence System, Filevine connects context across every matter to transform legal operations from reactive to proactive. LOIS reads, understands, and reasons across your data to surface insight, automate complexity, and give professionals the clarity and confidence to see more, know more, and do more. Fueled by a team of exceptional collaborators and innovators, Filevineâs rapid growth has earned AI awards and recognition from Deloitte and Inc. as one of the most innovative and fastest-growing technology companies in the country. Role Summary: Filevine is looking for a Senior Security Compliance Analyst to join our Information Security team and ensure that our platform, applications, and infrastructure are compliant and secured at the highest levels, thus protecting and enhancing customer trust. If you are bright, hardworking, and ambitious and enjoy taking ownership of security and compliance, we want to talk to you. This is an exciting opportunity to join a world-class team.

Responsibilities

Strategize and outline goals and objectives of the GRC (IT Audit and Risk management) programs.
Assist with security efforts to meet HIPAA, SOC 2 Type I & II, GDPR, CCPA/CPRA, CJIS and other compliance requirements.
Lead and perform audits to determine compliance with state and federal laws, rules, and regulations.
Plan and organize CJIS audit and training procedures, programs, services, and activities.
Work directly with Information Security, Legal, HR, Compliance and Development teams to ensure secure IT and IS best practices are fully adopted at Filevine.
Assess, prioritize, and assist with managing risks on identified vulnerabilities.
Provide privacy audits and compliance assessments for Filevine business units
Perform on-going security auditing and testing to improve software security.
Review audit, compliance and risk assessment issues that arise and manage them to resolution.
Provide audit frameworks and risk assessment methodologies contemplating new software solutions to help mitigate security vulnerabilities and other business risks.
Maintain documented Policy and Procedure libraries for compliance purposes.
Complete Third-party vendor risk management and security questionnaires for Filevine.
Provided annual Internal audit and risk assessment functions.
Facilitate and lead annual penetration testing and auditing efforts.
Develop a familiarity with new auditing and risk assessment tools and techniques.