Technology Risk and Compliance Analyst

Edinburgh Office

Clearwater Analytics

Clearwater Analytics is the leading provider of investment accounting software for reporting and reconciliation services for institutional investors.

View all jobs at Clearwater Analytics

Apply now Apply later

Job Description

Clearwater Analytics is looking for a hands-on Technology Risk and Compliance Analyst within our growing Information Security team. This role will help drive the compliance and assurance efforts for Clearwater and assist with responding to third party security assessments and support quarterly access review testing.

Responsibilities:

  • Drive quarterly user access reviews and coordinate test findings with external auditors

  • Assists in the production of response to security questions in “request for proposals” (RFP’s) or customer assessments

  • Acts as first point of escalation for security/compliance questions for current and prospective customers

  • Review third party vendors for security and compliance controls; review proposed client engagement terms and conditions and apply the company risk profile, providing the appropriate feedback as to any changes needed and documenting exceptions to the process

  • Identifies efficiency improvements in the security customer engagement process.

  • Communicates strategies, standards, policies, procedures, communications, and awareness efforts with all business partners.

  • Takes actions as directed to ensure compliance of global business units in actions necessary to ensure compliance with applicable frameworks.

  • Ability to manage time effectively by hitting assigned deadlines and milestones

  • Requires minimum supervisor to work on daily tickets and tasks, can use documentation and team resources to complete most tasks

  • Willingness and ability to maintain a positive, quality-oriented, reliable and flexible attitude

Requirements:

  • Experience with identity access management reviews, external auditing, and development of policies and procedures

  • Knowledge of SOC 2 and ISO 27001 control frameworks

  • Demonstrated experience with SOC 1 and/or SOC 2 audits and monitoring control activities

  • Experience communicating technical controls and processes with customers and stakeholders

  • Excellent verbal, written and interpersonal communication skills

  • Experienced in Atlassian (JIRA) and Microsoft Excel

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  15  7  0

Tags: Analytics Audits Compliance ISO 27001 Jira Monitoring RFPs Security assessment SOC SOC 1 SOC 2

Region: Europe
Country: United Kingdom

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.