Security Policy & Compliance Analyst
Tasks
- Administer security policy lifecycle
- Align internal practices to NIST and other frameworks
- Conduct compliance testing and audits
- Coordinate policy reviews and updates
- Develop deliver and maintain compliance training content
- Ensure compliance with laws and regulations
- Generate compliance testing analyses and reports
- Maintain centralized audit documentation
- Monitor compliance of information systems and processes
- Monitor regulatory developments
- Prepare policy and evidence for internal and third party audits
- Provide compliance guidance and training
- Publish and enforce security policies
- Report compliance violations
- Review controls and identify regulatory gaps
- Track compliance and policy enforcement metrics
Perks/Benefits
- 401k
- Career growth
- Education reimbursement
- Flexible spending account
- Medical, dental, and vision
- Paid sick leave
- Paid time off
- Parental leave
- Training
Skills/Tech-stack
800-171 | Audit management | Business Continuity | Compliance testing | Cybersecurity Framework | GRC | Governance Risk | Governance Risk and Compliance | Governance risk controls | ISO 27001 | Incident Response | Incident response documentation | Legal hold | NIST Cybersecurity | NIST Cybersecurity Framework | NIST SP | NIST SP 800 | NIST SP 800-171 | PCI DSS | Policy Management | Regulatory Compliance | Response documentation | Risk Assessment | Risk Management | Risk and Compliance | Risk controls | SOC 2 | SOX | SP 800-171 | Third Party | Third-Party Risk | Third-party risk management
Education
Related jobs
-
Embedded Intelligence Analyst USD 130K-130KBrandwatch | CLEAR | Crisis management | Dark Web | Deep Web401k match | Employee assistance program | Employee discount program | Life insurance | Long-term disabilityMid-level Full TimeSan Jose, CA, United States R14h ago
-
Senior GRC Analyst USD 115K-150K800-171 | Access Management | Audit | CIS Critical Security | CIS Critical Security Controls401k | Employee assistance program | Paid Holidays | Paid time offSenior-level Full TimePhoenix, AZ, United States15h ago
-
Senior GRC Analyst USD 105K-133K800-171 | Audit | CIS Critical Security | CIS Critical Security Controls | Cloud Security401k | Comprehensive health benefits | Disability coverage | Employee assistance program | Flexible spending accountsSenior-level Full TimeSt. Louis, MO, United States15h ago
-
Senior GRC Analyst USD 105K-133K800-53 | Access Management | Audit | CIS Critical Security | CIS Critical Security Controls401k | Disability coverage | Discretionary annual bonus | Employee assistance program | Flexible spending accountsSenior-level Full TimeAtlanta, GA, United States15h ago
-
Access Control | Contract Review | Cybersecurity Framework | Data Protection | Incident ResponseSenior-level ContractAustin, United States16h ago
-
Senior Incident Response Consultant, Public Sector USD 174K-252KAttacker TTPs | Cloud Incident Response | Coding | Computer Security | Design reviewMentor staff | Travel 20 percentSenior-level Full TimeReston, VA, USA; Atlanta, GA, USA19h ago
-
Threat Analyst, Mandiant Custom Intelligence USD 113K-161KAdversary Tactics Techniques and Procedures | Adversary tactics | Artificial Intelligence | Cyber Threat | Cyber Threat IntelligenceMid-level Full TimeVirginia, USA; United States19h ago
-
Embedded Event Security Manager USD 130K-150KAccess Control | Contingency Planning | Credentialing | Crowd Management | Event planning401k match | Defensive driving training | Dental insurance | Employee assistance program | Executive Protection TrainingMid-level Full TimeUnited States20h ago
-
Access Management | Client certificates | Disk encryption | Documentation | Endpoint SecurityDental coverage | Flexible spending accounts | Health coverage | Paid Holidays | Paid parental leaveMid-level Full TimeCincinnati, OH, US, 452211d ago
-
Associate Cyber Security Analyst (Remote) USD 61K-104KAWS | Access Control | Azure | Cybersecurity | Endpoint protectionOn-call rotation | Remote work | Travel 1-2 times per yearMid-level Full TimeNationwide Remote Office (US99), United States R1d ago
-
Security Engineer USD 74K-124K800-53 | AWS | Access Management | Cloud Security | Continuous MonitoringEntry-level Full TimeHome Office: Manassas, VA, United States1d ago
-
Sr Vulnerability Management Analyst USD 100K-164KAutomation | CTEM | CVSS | Cloud Security | Configuration ManagementHybrid work modelSenior-level Full TimeMalvern, PA, United States1d ago
-
Product Security Engineer USD 118K-190KAuthorization | Automation | Cloud Security | Container Security | Containerized Environments401k employer match | Employee stock purchase plan | Paid parental leave | Paid time off | Remote work flexibilityMid-level Full TimeRemote US DC, United States R1d ago
-
Security Engineer USD 131K-178KAWS | Azure | Cloud platform | Detection Systems | Firewall administration401k company match | Career development | Hybrid work | Paid time off | Wellness packagesMid-level Full TimeUSA VA Home Office (VAHOME), United …1d ago
-
Manager Cybersecurity Architecture & Engineering USD 128K-176K800-82 | AI Governance | Access Management | Cloud Security | Compliance ManagementHealth insurance | Paid time off | Retirement benefits | Tuition reimbursement | Volunteer opportunitiesSenior-level Full TimeMadison General Office, United States1d ago
-
Information Security Analyst USD 81K-107K800-171 | AWS | Access Control | Access reviews | Azure401k match | 9/80 schedule | Healthcare | Paid maternity and parental leave | RemoteMid-level Full TimeMojave, CA R1d ago
-
Cyber Assurance Auditor Associate USD 83K-108KACAS | Correlation logic | DISA Security Technical Implementation Guide | DISA security | IBM QRadar401k | Company Paid LifeandAD&D | Paid Holidays | Paid parental leave | Paid time offMid-level Full TimeHuntsville, Alabama, United States1d ago
-
Access | Automation | Business Continuity | Business Intelligence | Data QualityEntry-level Full TimeDallas, TX, United States1d ago
-
Senior Information Security GRC Analyst USD 155K-165KAudit management | AuditBoard | Awareness Training | CCPA | Compliance Management401k | Employee Sick Time | Flexible time off | Home office stipend | Medical, dental, and vision insuranceSenior-level Full TimeRemote, US R1d ago
-
SecOps Engineer USD 111K-155KAI analysis | AWS | Detection and Response | Git | Incident Response401k match | Dental insurance | Disability coverage | Employee assistance program | Employee resource groupsEntry-level Full TimeUnited States | Remote R1d ago
-
Junior Cybersecurity Analyst - Richmond USD 40K-40KCompliance | Cybersecurity | Information security | Risk Management401k match | Gym membership stipend | Healthcare stipend | In-office snacks | Paid federal holidaysEntry-level Full TimeRichmond, VA1d ago
-
Junior Cybersecurity Analyst - Boston USD 44K-44KClient Communication | Compliance | Cybersecurity | Information security | Risk Assessment401k match | Federal Holidays | Gym membership stipend | Healthcare stipend | In-office snacksEntry-level Full TimeBoston, MA1d ago
-
Junior Cybersecurity Analyst - NYC USD 44K-50KCompliance | Cybersecurity | IT Operations | Incident Response | Report Writing401k match | Federal Holidays | Gym membership stipend | Healthcare stipend | In-office snacksEntry-level Full TimeNew York, NY1d ago
-
IAM Analyst (Tier 1) USD 82K-104KAccess Management | Access Modification | Access deprovisioning | Access provisioning | Cybersecurity complianceMid-level Full TimeWashington, DC, United States1d ago
-
Consultant, Penetration Tester USD 86K-148KAPI Security | AWS | Active Directory | Application Security | AzureCertification reimbursement | Digital mental health support | Flexible time off | Flexible work model | Insurance optionsSenior-level Full TimeUnited States1d ago