Senior Security Compliance Analyst

Bachelor’s degree or higher in Computer Science, Management Information Systems or Accounting, or equivalent experience
Comprehensive understanding of IT Security practices and the Governance, Risk, and Compliance lifecycle
In-depth knowledge in IT security frameworks and best practices, such as NIST publications, FedRAMP, ISO 27001, CCM, IRAP Protected, ISMAP, BSI-C5, TISAX, SOX, HIPAA, ENS, HDS, and SOC2 Trust Principles and Criteria
Understanding of IT methodologies, such as software development lifecycle and operations
Strong analytical and problem-solving skills and the ability to “think-out-of-the-box”
Strong oral, written and presentation communication skills
Able to work independently or with a team

Participate in Security Compliance Assessments of the company’s computing environment, with focus on security controls
Interpret requirements across multiple compliance frameworks
Collaborate to manage and maintain common controls framework for Okta
Scheduling compliance walkthroughs
Ensuring consistent operations and communications across compliance teams
Ensuring visibility into key compliance projects through reporting and metrics
Analyze gaps between current status and future compliance framework needs
Perform controls testing and develop recommendations based on confirmed observations
Work with process and control owners to help them understand the audit results, identify remediation options, and prioritize their closure
As needed, develop appropriate security documentation, including system security plans, information security policies, and risk assessment procedures
Assess security impact on changes to the systems and applications
Identify opportunities for improvement within the Compliance program and build plans to address them.