Compliance Analyst
Gravity IT Resources
To Apply for this Job Click Here
Job Title: Compliance Analyst
Location: Remote (EST Hours)
Job Type: Contract
Referral Fee:
Employment Eligibility: Gravity cannot transfer nor sponsor a work visa for this position. Applicants must be eligible to work in the U.S. for any employer directly
Position Overview
The IT Cybersecurity Compliance Analyst holds a pivotal role, operating at a junior to mid-level capacity to bolster our cybersecurity compliance initiatives. Tasked with fortifying security strategy, this position actively contributes to the orchestration and oversight of an enterprise-wide cybersecurity compliance program. Key responsibilities encompass the identification, meticulous analysis and strategic management of information risks and compliance obligations across the IT organization. This role coordinates and collaborates with internal and external Audit, IT, and Business teams on a global scale to ensure the seamless facilitation of an effective IT Compliance program.
Required Skills
- 2+ years of experience in information security, especially in an IT Audit or information risk analysis role
- Understanding of Cybersecurity and regulatory compliance concepts: A foundational understanding of cybersecurity principles, including risk management, compliance frameworks and regulations (Such as NIST, ISO 27001, GDPR, Sarbanes Oxley, HIPAA, data privacy laws and industry best practices globally)
- Knowledge of Agile Methodologies: Familiarity with Agile methodologies, particularly Scaled Agile Framework (SAFe), Kanban boards for task management and issue tracking.
Duties and Responsibilities
- Facilitate and coordinate meetings with internal and external teams, demonstrating sensitivity to existing schedules and workloads to ensure optimal participation and efficiency.
- Collaborate closely with IT teams to collect evidence pertinent to internal and external audits and assessments ensuring thoroughness and accuracy in compliance documentation.
- Cultivate strong relationships with various teams, fostering an environment of collaboration and prompt communication to facilitate timely responses to compliance inquiries and requests.
- Actively contribute to the development and maintenance of an enterprise-wide cybersecurity compliance program, leveraging insights from team interactions to inform strategy and implementation.
- Maintain meticulous records and documentation related to compliance activities, ensuring accessibility and accuracy for audits and reporting purposes.
- Provide support and assistance to senior cybersecurity analysts and management as needed, demonstrating a willingness to learn and grow within the role.
- Stay abreast of industry trends and best practices in cybersecurity compliance, continuously seeking opportunities for professional development and improvement in role effectiveness.
- Actively participate in the assessment of adherence to cybersecurity compliance standards and regulations, identifying areas for improvement and participate in the discussion of proposed corrective measures as necessary.
- Proactively seek opportunities for process optimization and enhancement of cybersecurity compliance practices, driving continuous improvement initiatives to strengthen the overall security posture of The Mosaic Company.