Technology Risk and Compliance Analyst
Edinburgh Office
Clearwater Analytics
Clearwater Analytics is the leading provider of investment accounting software for reporting and reconciliation services for institutional investors.Job Description
Clearwater Analytics is looking for a hands-on Technology Risk and Compliance Analyst within our growing Information Security team. This role will help drive the compliance and assurance efforts for Clearwater and assist with responding to third party security assessments and support quarterly access review testing.
Responsibilities:
Drive quarterly user access reviews and coordinate test findings with external auditors
Assists in the production of response to security questions in “request for proposals” (RFP’s) or customer assessments
Acts as first point of escalation for security/compliance questions for current and prospective customers
Review third party vendors for security and compliance controls; review proposed client engagement terms and conditions and apply the company risk profile, providing the appropriate feedback as to any changes needed and documenting exceptions to the process
Identifies efficiency improvements in the security customer engagement process.
Communicates strategies, standards, policies, procedures, communications, and awareness efforts with all business partners.
Takes actions as directed to ensure compliance of global business units in actions necessary to ensure compliance with applicable frameworks.
Ability to manage time effectively by hitting assigned deadlines and milestones
Requires minimum supervisor to work on daily tickets and tasks, can use documentation and team resources to complete most tasks
Willingness and ability to maintain a positive, quality-oriented, reliable and flexible attitude
Requirements:
Experience with identity access management reviews, external auditing, and development of policies and procedures
Knowledge of SOC 2 and ISO 27001 control frameworks
Demonstrated experience with SOC 1 and/or SOC 2 audits and monitoring control activities
Experience communicating technical controls and processes with customers and stakeholders
Excellent verbal, written and interpersonal communication skills
Experienced in Atlassian (JIRA) and Microsoft Excel
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits Compliance ISO 27001 Jira Monitoring RFPs Security assessment SOC SOC 1 SOC 2
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.