Senior Compliance Analyst

Join us at Entrust  

At Entrust, we’re shaping the future of identity centric security solutions. From our comprehensive portfolio of solutions to our flexible, global workplace, we empower careers, foster collaboration, and build solutions that help keep the world moving safely.  

   

Get to Know Us  

Headquartered in Minnesota, Entrust is an industry leader in identity-centric security solutions, serving over 150 countries with cutting-edge, scalable technologies. But our secret weapon? Our people. It’s the curiosity, dedication, and innovation that drive our success and help us anticipate the future. 

Entrust is seeking an experienced individual to help support our Information Security department in the areas of Security Governance, Risk, Compliance and Policy across the organization.

This position works as part of a security team responsible for ensuring that the company's information resources are secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to users in a timely fashion. This position demands an organized, action-oriented team player with the ability to prioritize daily work and support multiple initiatives simultaneously; strong communication and customer focus is required.

How You Will Make an Impact:

• Oversee and drive the end-to-end PCI-DSS and NIST 800-53 operational security compliance and audit programs and facilitate internal and external audits and assessments.
• Assist with developing our continuous controls monitoring program.
• Review and make recommendations on operational procedures to ensure they comply with security audit requirements.
• Submit periodic compliance reports as well as operational requirements defined in PCI-DSS and other security compliance activities.
• Facilitate external security auditor engagements, organize required objective compliance evidence, schedule required resources, submit required reports, and manage audit timelines.
• Review audit logs and vulnerability assessments for anomalies and report and follow up on anomalies as required.
• Prepare and deliver PCI-DSS security audit and compliance scorecards to CISO and other leaders (e.g., CIO, Internal Audit, CFO, etc.)
• Review and assess logical and physical security controls required to meet various security requirementsincluding those for PCI-DSS; document all necessary audit artifacts and ensure they are available whenever required for audit evidence.
• Work closely with facilities security to either directly perform physical control assessments or make sure they are completed – these include daily, weekly, monthly, quarterly as well as yearly artifacts that are required to support. continued PCI-DSS certifications.  Formal artifacts must be obtained and available for the certification audits.
• Facilitate timely identification, communication, and recommended resolution of security risks.
• Serve as the internal and customer facing subject matter expert on PCI-DSS and NIST 800-53.
• Assist with completing customer security questionnaires.
• Drive the ongoing PCI-DSS internal compliance (awareness training, vulnerability scans, etc.).
• Advise customers and internal stakeholders on PCI-DSS best practices, compliance, and audit processes.
• Proactively understand PCI-DSS security control best practices and advocate for adoption of these internally at Entrust.
• Coordinate with the various groups at Entrust and 3rd Parties to adopt best practices, communicate system changes, and facilitate documentation and compliance.
• Assist with other audits and compliance activities relating to data security and technical controls.
• Manage project document repository; maintain strict deadlines and positive vendor/customer relationships.

Basic Qualifications

• Bachelor’s Degree
• 5+ years of security compliance or audit experience with various compliance frameworks including PCI-DSS
• Ability to work remotely, cross functionally with leaders and team members across time zones and continents
• Experience with Operating platforms (i.e., UNIX and Windows)
• Experience with enterprise security tools and security architecture best practices
• Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing
• Experience with creating all necessary PCI-DSS Certification and Accreditation documentation
• Minimum 10% travel requirement

Preferred Qualifications:

• Security clearance or ability to obtain a security clearance
• Proficiency evaluating/analyzing results from the following set of tools, to include but not limited to: Nexpose, WebInspect, etc.
• Experience working with and building out enterprise GRC tools
• Working knowledge of Enterprise Network devices (i.e., routers, switches, firewalls).
• Experience with preparing and testing IT Contingency Plans, Incident Response Plans, and conducting security risk assessments
• Experience with NIST, FedRAMP, FISMA, ISO, PCI DSS and CP
• Project management experience preferred.
• CISA, CIA, CPA, CGFM, or CRISC certification a plus

At Entrust, we don’t just offer jobs – we offer career journeys. Here is what you can expect when you join our team:  

• Career Growth: Whether you’re a budding developer or a seasoned expert, we’re invested in your professional journey. With learning-forward initiatives and exciting challenges, your growth is our priority.  

• Flexibility: Life is all about balance. Whether you’re remote, hybrid, or on-site, we offer flexible options that fit your lifestyle.  

• Collaboration: Here, your voice matters. Our teams thrive on sharing ideas, brainstorming solutions, and working together to build a better tomorrow.  

We believe in securing identities—but it doesn’t stop there. At Entrust, we’re passionate about valuing all identities. Our culture is built on diversity, inclusion, and respect. From unconscious bias training for our leaders to global affinity groups that connect colleagues across the globe, we’re creating a community where everyone is encouraged to be themselves.  

 

Ready to Make an Impact?  

If you’re excited by the prospect of innovating, growing your career, and collaborating in a dynamic environment, Entrust is the place for you. Join us in making a difference. Let’s build a more secure world—together.  

   

Apply today!  

 

For more information, visit www.entrust.com.  Follow us on, LinkedIn, Facebook, Instagram, and YouTube

Compensation Range:

The anticipated starting base pay for this position is: $117,568-$172,433 per year (in the primary posting location). Actual compensation will be determined based on geographic location, education, skills and experience. This position is also eligible for the company’s discretionary annual incentive plan. In addition to your pay, Entrust offers eligible colleagues and their dependents comprehensive health and well-being programs which include medical, vision, dental, a generous 401(k) matching contribution, life and disability insurance, mental health coaching, virtual fitness programs, paid personal time off plus 12 paid holidays, parental leave and education reimbursement. Please speak with the recruiter for more details. Note: Benefit and Compensation programs are subject to eligibility requirements and other terms of the applicable plan or program. Entrust has the right to end, suspend or amend any of its plans at any time in whole or in part.

For US roles, or where applicable:

Entrust is an EEO/AA/Disabled/Veterans Employer

For Canadian roles, or where applicable:

Entrust values diversity and inclusion and we are committed to building a diverse workforce with wide perspectives and innovative ideas. We welcome applications from qualified individuals of all backgrounds, and we strive to provide an accessible experience for candidates of all abilities.

If you require an accommodation, contact accessibility@entrust.com.

Recruiter:

Steve Donahue

Steve.Donahue@entrust.com