Security Compliance Analyst

About TaskUs: TaskUs is a provider of outsourced digital services and next-generation customer experience to fast-growing technology companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery, ride-sharing, HiTech, FinTech, and HealthTech. 

The People First culture at TaskUs has enabled the company to expand its workforce to approximately 45,000 employees globally. Presently, we have a presence in twenty-three locations across twelve countries, which include the Philippines, India, and the United States.

It started with one ridiculously good idea to create a different breed of Business Processing Outsourcing (BPO)! We at TaskUs understand that achieving growth for our partners requires a culture of constant motion, exploring new technologies, being ready to handle any challenge at a moment’s notice, and mastering consistency in an ever-changing world.

What We Offer: At TaskUs, we prioritize our employees' well-being by offering competitive industry salaries and comprehensive benefits packages. Our commitment to a People First culture is reflected in the various departments we have established, including Total Rewards, Wellness, HR, and Diversity. We take pride in our inclusive environment and positive impact on the community. Moreover, we actively encourage internal mobility and professional growth at all stages of an employee's career within TaskUs. Join our team today and experience firsthand our dedication to supporting People First.

Security Compliance Analyst role description

Oversight and implementation of system-wide information security strategies and solutions. A significant role in performing audits, tracking vulnerability assessments, testing security, and working with operations teams on remediation and mitigation of audit findings. To manage and improve overall information security, Monitoring and compliance using processes, procedures, and automation.

Security Compliance Analyst (SCA) Responsibilities: 

Security and Privacy:

SCA must read, understand, and implement the responsibilities and measures described in the client GOPs.

Ownership and Accountability:

• Is responsible for functional testing and commissioning of security equipment at the site.

• Completing sets of Owner's Operation and Maintenance Manuals and other information necessary for use and upkeep of the physical security system. Safeguarding people data and assets through validation of the Client's global policy compliance and identification of gaps.

• Driving accountability through increased awareness and understanding of risks associated with physical security gaps.

Employees Awareness and Training:

• Educate and inspire other key site stakeholders to recognize and own compliance with Client's Global Security Standards.

• Must complete initial training housed in KNET, and complete annual refresher trainings afterwards.

• Must complete all other security-oriented training administered by Client's and the GO partner. Should serve as a resource for other employees, and SCA should partner with Learning and Development to ensure all employees complete requisite training.

Milestones and Program Performance:

• Ensure site performance meets and/or exceeds the standards and SLA’s set forth by the

Client's CS Compliance team, MSA, policies, standards, and this guide.

• Ensure the on-time completion of all Corrective Action Plans (CAPs), and delivery of requisite support to Client's Compliance as evidence of completion.

• Proactive notification of Client's Compliance and VM in the event a CAP will not be completed before the assigned due date. Should describe mitigating controls, if any, and communicate a revised timeline agreeable to Client's.

Other Compliance responsibilities

• Work with technicians throughout the company in implementing, maintaining and constantly improving information security practices, while managing and maintaining efforts in the areas of Information Security, Governance, Risk and Compliance.

• Support the Security Compliance Manager in handling the assessment and integration of security controls of the entire corporate environment in line with applicable requirements from PCI DSS, SOC 2, HIPAA/HITRUST and ISO 27001.

• Responsible for policy assessment of endpoint and network security appliances, hardware and software, enforcing the TaskUs security policies and complying with requirements of internal and external security audits and recommendations. 

• Serve as audit liaison, compiling all evidence/documentation requests and reporting on the progress of audits to InfoSec and IT leadership. 

• Assist in the development and maintenance of security operations procedures and processes and work with the business units outside of InfoSec to formally document policies and procedures

Security Compliance Analyst Qualifications

Requirements:

• Bachelor’s degree in MIS/Computer Science or Business and/or combination of education and relevant experience

• Good to have an industry recognized information security certification, such as CISA, CISM, CISSP, SSCP, CCIE or CEH.

• At least 3-5 years of experience, focused on IT security and/or Physical Security Management.

• Hands-on experience in compliance requirements: PCI DSS, SOC 2, HIPAA/HITRUST and ISO 27001

• Has an IT technical understanding and aptitude for analytical problem-solving; understands enterprise computing environments, distributed applications, and understanding of networks

• Proficient is the English language, including both in writing and speaking. 

• Previous background working on system hardening processes, tools, guidelines and benchmarks

• Has good Project Management skills with the ability to self-start projects

• Can handle sensitive and/or confidential material and information with suitable discretion

About TaskUs

TaskUs is a leading provider of outsourced digital services and next-generation customer experience to the world’s most innovative companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery and ride-sharing, Technology, FinTech and HealthTech. TaskUs had a worldwide headcount of approximately 60000 people across 32 locations in 13 countries, including the United States, the Philippines and India.

In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics and circumstances. Inclusive and equitable practices is our responsibility as a business.

TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodation in any part of the hiring process, please let us know.

“Please take note that TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.”

How We Partner To Protect You: TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.

DEI: In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics, and circumstances. Inclusive and equitable practices are our responsibility as a business. TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodations in any part of the hiring process, please let us know.

We invite you to explore all TaskUs career opportunities and apply through the provided URL https://www.taskus.com/careers/.