Risk Analyst - Information Security, Moodle - (Remote)

Moodle with us!

We're the world's most popular learning platform and we’re on a mission to empower educators to improve our world.

Find out about your new workplace...

Moodle is the world’s most trusted online learning solution. The engine of our ecosystem is Moodle LMS, the secure and customizable open source learning management platform used by over 250 million learners worldwide. Developed in conjunction with our community, Moodle LMS is complemented by an ecosystem of products including Moodle Workplace and a network of partners and services providing hosting, customizations and support. We also teach and support educators to create effective online learning experiences and share open education resources. Collectively, we empower educators to improve our world.

Moodle provides services in learning design, implementation support, training, hosting, custom development, and support for Moodle LMS, Moodle Workplace, as well as other Moodle products.

We’ve built a passionate team of hard-working and driven people from all over the world, united by a shared belief in the ability of our platform to make a positive difference to our world. We respect our colleagues and value an open and innovative workplace, filled with integrity and of course a strong focus on education (yes, these are our company values!)

Find out more about us on our website.

What your new role can look like…

The Risk Analyst main function is to work within the Information Security department and serve as an analyst on open source intelligence, quantitative risk assessment, threat and vulnerability assessment practices, compliance management and audit management functions. The individual will support the company’s Information Security Governance, Risk, and Compliance program.

Please note, this role will be supporting global stakeholders. Ability to work across multiple time zones is a must, along with flexibility on responsibilities involving global projects. This is a fully remote role, with preference given to candidates located in the UK or Spain.

With the pace of Moodle, no two days will ever be the same! You will...

• Proven ability to leverage open-source intelligence (OSINT) techniques and methodologies.
• Meticulous and detail-oriented with a focus on accuracy.
• Excellent research and analytical skills, with experience gathering and analyzing information from diverse sources, including the dark web, social media, and public records.
• Assist in the ongoing evaluation and enhancement of all departmental policies, processes, and procedures.
• Stay informed on industry trends in security, risk, compliance frameworks, risk management practices, and information security solutions.
• Continuously monitor, audit, evaluate, and improve technical controls under your purview.
• Collaborate with cross-functional teams to develop and maintain risk and security compliance programs, including SOC 2, FedRAMP, ISO 2700, TPRM, and VM, encompassing policy, process, technology, and continuous compliance of active certifications.
• Support departmental audit and compliance activities to maintain active certifications and achieve future certification objectives.
• Help develop and maintain the company’s Third Party Risk Management and Cyber Risk Management Program.
• Regularly liaise with stakeholders and leaders from other departments to ensure accuracy in identifying risks within the Risk Management Program.
• Establish and manage vendor relationships for the technologies under administration by this position.

Requirements

This position embodies and promotes the department’s mission, goals and values:

Mission:

• To reduce the probability of material impact due to a cyber event

Goals:

• Support: Support the company strategy and objectives
• Protect: Protect the critical assets including reputation 
• Comply: Comply with laws, regulations and industry standards 
• Enable: Enhance company competitive position by securely supporting and enabling new products / services 
• Educate: Effectively promote information security education 

Values

• Honesty
• Integrity
• Accountability
• Collaboration
• Continuous Improvement

We’d love to hear from you, especially if you can talk to us about your:

• Bachelor's Degree in a related field of study.
• Strong experience in OSINT techniques and methodologies
• Competency and proficiency in the CIS CSC and NIST CSF security frameworks.
• Competency in the FAIR risk framework.
• Proficiency and capability in project management practices.
• Embody and promote the department’s mission, goals and values.
• Experience managing SOC2 recertification processes

You’ll sweep us off our feet if you have:

• CompTIA A+
• CompTIA Security+
• FAIR Analyst
• CRISC
• CRMM

Benefits

What's in it for you?

We’ve already talked about the importance we place on achieving our mission to empower educators to improve our world, our passion for our values and some of the cool things we are doing as a company.

So what about this?!

Moodle has a globally diverse team with over 280 team members in more than 25 countries around the world. We’ve built a passionate team of hard-working, driven and diverse people from all over the world, united by a shared belief in the ability of our platform to make a positive difference to our world. We respect our colleagues and value an open and innovative workplace, filled with integrity and of course a strong focus on education (yes, these are our company values!)

In addition to this you can expect:

• Taking on a genuinely flexible, distributed role, working from anywhere in the world
• A fantastic range of benefits, focusing on work-life balance, wellbeing and ‘choosing your own adventure.’
• Working with a global team on a worldwide platform and make a real difference.
• As a certified B Corp, we are proud to be part of a global community of mission-driven companies dedicated to using business as a force for good.

Does all this sound good? If so:

• Click on the following link to apply
• Add your resume and anything else you'd like to add
• Press send.

Moodle is the world’s most trusted online learning solution, with a growing ecosystem of products and services, including Moodle Workplace, Moodle App, MoodleCloud, and more. The engine of our ecosystem is Moodle LMS, the secure and customisable open source learning management platform used by well over 300 million learners worldwide. 

Find out more about us on our website.

At Moodle we are an equal opportunity employer that actively supports diversity and inclusion in the workplace and prohibits discrimination and harassment of any kind. We’re committed to fair recruitment and selection practices, ensuring we are drawing from a diverse range of sources to attract and select the very best person for the job. Learn more in our Diversity & Inclusion Charter.