[ref. d72650202] Security Compliance Analyst I

Overview:

Performs regular access reviews for critical systems. Plays a crucial role in protecting an organization’s information systems by identifying and mitigating potential security risks. Maintains the security and integrity of an organization’s information systems.

Hiring Range: $66k - 82k / Year

Responsibilities:

ESSENTIAL FUNCTIONS:

• Assists with the implementation of the corporate information security governance and compliance efforts

• Performs internal security and privacy compliance assessments based upon identified controls.
• Performs security assessments for third party vendor or partner relationships with the ability to read and

• Assists in developing and implementing security program governance, compliance frameworks, processes,

• Provides KPIs, metrics and recurring reports to management.
• Participates in the implementation and continuous improvement of the ESSC Security Program.
• Participates in Incident Response and Disaster Recovery planning and exercises.
• Performs regular access reviews for critical business systems.
• Performs other duties as assigned.

Qualifications:

EDUCATION:

• Security +, CISA, CISSP, CISM or other information security certifications preferred.
• Bachelor’s Degree: Typically, in Information Technology, Business, or a related field is preferred.

EXPERIENCE:

• 2-5 years of experience in Information Security/Compliance.
• Experience with information security, internal & external audits, contract compliance, and quality

• Experience driving compliance-related activities such as SOC2 readiness & audit support.

KNOWLEDGE, SKILLS, ABILITIES:

• Must pass all drug testing required by ESSC and if required, a post-offer physical evaluation.
• Ability to obtain and maintain a criminal record/fingerprint clearance from the Department of Justice and

• Understanding and application of security best practices, risk management, regulatory, contractual, and

• Knowledge of applicable laws and practices relating to information privacy and security.
• Firm understanding of risk management principles.
• Demonstrated knowledge of business software and hardware, knowledge of security related applications,

familiarity with ticketing systems, and strong customer service and organizational skills.