Jr Information Security Analyst - Technology R&D

This could be the Opportunity of Your Life!
Signant Health is a global evidence generation company. We’re helping our customers digitally enable their clinical trial programs, meeting patients where they are, driving change through technology and innovations and reimagining the path to proof.
Working at Signant Health puts you in the very heart of the world’s most exciting sector - a high-growth, dynamic company in an extraordinary industry.

Where do you fit in?

The Information Security Compliance Analyst plays a key supporting role in the execution of a number of key assurance activities, including business continuity programs, vendor management programs, and attestation/certification programs. Lastly, the Information Security Compliance Analyst will serve as the primary point-of-contact for most information security business-as-usual activities.


As part of our team, your main responsibilities will be:

1. Serve as day-to-day lead for the following programs:
a. Information Security Vendor Management Program:
i. Implement and maintain Vendor Management Tracking
ii. Coordinate with the internal Procurement team on new vendor assessments, which include:
1. Implementing, maintaining, and executing online vendor assessment questionnaires when needed.
2. Obtaining and reviewing relevant vendor security attestations and other relevant information security materials
3. Creating and disseminating the necessary assessment summary documentation.
iii. Ensure vendor periodic reassessments occurred within pre-defined timeframe
2. Serve as main POC for organization on Information Security assurance business-as-usual and customer audit activities. This includes, but is not limited to the following:
a. Completion of vendor/RFI(P) information security assessments.
b. Providing copies of Information Security materials approved for external sharing
c. Drafting Memos-To-File for sign-off by the Chief Information Security Officer
3. Provide as-needed logistical support to on-going Enterprise Business Continuity and Information Security Certification/Attestation efforts. (e.g. SSAE-18 SOC2, ISO27001, etc.)

You’ll need to bring:

1. Degree in business administration, project management, or a technology-related field required.
1. Minimum of 1-2 years of experience in a combination of risk management, information security and IT jobs
2. Prior experience in administering the following programs:
a. Enterprise Business Continuity Program
b. Information Security Vendor Assessment Program
3. Prior exposure to the following:
a. Information Security Compliance Programs.
i. SSAE-18 SOC2
ii. ISO 27001
b. Information Security Risk Assessment/Audit program.
c. Information Security Awareness Program
3. Excellent written and verbal communication skills and high level of personal integrity.
4. Ability to function independently with minimal supervisory input.

We’d be thrilled to hear that you also have:

1. Information Security or IT Risk Management/Audit certification
2. Experience with Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs).
3. Ability to work in cross-functional, interdisciplinary teams.

Location: Santiago, RM, Chile
Language: Resumes must be submitted in English. Advanced Level of English required.
Ready to join the adventure? Apply now and be a part of Signant Health’s exciting journey!
#LI-IM1


At Signant Health, accepting difference isn’t enough—we celebrate it, we support it, and we nurture it for the benefit of our team members, our clients and our community. Signant Health is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or veteran status.