RFP Analyst II

Job Description:

This position is responsible for all formal responses regarding Vertex’s Information Security Program. This includes Requests for Proposals (“RFPs”), contract renewals, audit preparation and other responses as needed. Additionally, this role will work various stakeholders to document information security policies, processes and procedures. .

ESSENTIAL JOB FUNCTIONS AND RESPONSIBILITIES:

·   Understanding of Vertex’s security controls, policies and procedures as it relates to internal processes and across customer product lines.

·   Drafting of responses to security questionnaires received from customers, prospects and vendors

·   Stay abreast and knowledgeable of changing security landscape internally and externally as an SME.

·   Maintain and monitor progress of the IT Risk Profile including periodic reporting to management on possible security exposures and the corresponding mitigation activities.

·   Interface with customers on their questions surrounding information and application security.

·   Monitor IT control processes to ensure current state responses.

·   Maintain an understanding of the different computing environments at Vertex including the controls in place and recommend additional controls as needed.

·   Develop and implement information security policies, processes and procedures where necessary

·   Participate in other projects or duties.

SUPERVISORY RESPONSIBILITIES:

·   N/A

KNOWLEDGE, SKILLS AND ABILITIES:

·   Solid understanding of technology environments and their components including the risks associated with their use.

·   Thorough understanding of IT and operational control concepts associated with SOC1 and SOC2 audits.

·   Strong written and verbal communication skills.

·   Ability to effectively communicate with other areas of the company.

EDUCATION AND TRAINING:

·   Bachelor’s degree in related field

·   Three (3) plus years of experience in IT audit, IT security or Systems Administration

·   Experience documenting information security policies, processes and procedures or similarly structured documentation a plus.

·   Technical writing experience in the software industry is preferred

·   CISA and/or CISSP certification is preferred.

·   Or equivalent combination of education and/or experience

Other Qualifications
The Winning Way behaviors that all Vertex employees need in order to meet the expectations of each other, our customers, and our partners.

• Communicate with Clarity - Be clear, concise and actionable. Be relentlessly constructive. Seek and provide meaningful feedback.

• Act with Urgency - Adopt an agile mentality - frequent iterations, improved speed, resilience. 80/20 rule – better is the enemy of done. Don’t spend hours when minutes are enough.

• Work with Purpose - Exhibit a “We Can” mindset. Results outweigh effort. Everyone understands how their role contributes. Set aside personal objectives for team results.

• Drive to Decision - Cut the swirl with defined deadlines and decision points. Be clear on individual accountability and decision authority. Guided by a commitment to and accountability for customer outcomes.

• Own the Outcome - Defined milestones, commitments and intended results. Assess your work in context, if you’re unsure, ask. Demonstrate unwavering support for decisions.

COMMENTS:

The above statements are intended to describe the general nature and level of work being performed by individuals in this position. Other functions may be assigned, and management retains the right to add or change the duties at any time.