Senior Risk & Compliance Analyst at Apptio in Remote
Job Description Overview You:
You are a Senior Risk & Compliance Analyst who is looking for the opportunity to leverage your technical and business skills to have a global impact in the dynamic Technology Business Management market. This position will report to the Manager, Security Risk and Compliance. You will work closely with IT teams, data center operations personnel, external business partners and most importantly prospective and existing customers in defining the appropriate policies, architectures, technologies, and practices to provide protection for our clients' information assets. This role provides a unique opportunity to interact directly with customers to support business-critical sales initiatives and to ensure ongoing customer satisfaction. Us:
Our team has broad responsibility for security and compliance across Apptio services and business units worldwide. We are highly motivated and dynamic individuals woven into a collaborative team where teamwork and flexibility are critical to our success. Responsibilities What we want you to do:
Contribute to the design, implementation, and operations of procedural and technical security controls Perform technical audits of IT General Controls, Information Security, SDLC, Application Security, and Operations. Determine audit scope, design testing strategies, test, evaluate, and document controls, identify control gaps and report audit issues based on significance, risk, and impact. Collect, review, analyze and verify the performance of internal controls, adherence to internal policy & procedures and client security expectations. Conduct staff interviews and walkthroughs; perform analysis to identify key business risks and controls. Manage follow-up on open audit issues and facilitate agreements with business process owners to ensure timely closure of action plans. Research, standardize, compose, edit, and approve documented policies and procedures/process for compliance and in accordance with accepted industry standards. Keep abreast of current and emerging technologies and recommend changes to audit programs as necessary. Engage with prospective and existing customers to understand their security expectations, communicate written and verbal technical, policy, and procedural security information to them, and participate in customer calls in support of sales initiatives as needed Qualifications Requirements:
Minimum 5
years' experience with technical security auditing Experience conducting and or participating in risk assessment audits with common control frameworks and standards such as ISO 27000 series, NIST CSF, SOC 1/2/3, and Cloud Security Alliance Cloud Controls Matrix (CCM) Experience working with privacy regulations such as GDPR, CCPA Experience working with cloud SaaS companies using public cloud services such as AWS, GCP, Azure, IBM Cloud CISA, CISM, CISSP (or equivalent) certification required Preferred
Qualifications:
Excellent interpersonal skills for building and establishing strong relationships with customers and key stakeholders, including senior staff, the security team, and the wider organization. The ability to audit, assess and identify compliance gaps in information security controls. Collaborative work style; effective communication; cross-functional teamwork. Ability to independently plan, organize and prioritize tasks. Strong general business skills and an aptitude for critical thinking and intellectual curiosity. Great attitude, independent, and takes ownership of all tasks from start to end. Highly organized and comfortable working in a rapidly changing and ambitious environment. Strong knowledge of desktop, server, application, and network security principles for conducting comprehensive business impact analysis and risk identification. Experience and/or knowledge of cloud computing and SaaS application delivery models. Experience and/or knowledge of information security tools/systems:
SIEM, DLP, IDS/IPS, etc.
Salary Range:
$80K -- $100K
Minimum Qualification
Auditing & Compliance, Risk & Quantitative AnalysisEstimated Salary: $20 to $28 per hour based on qualifications.
You are a Senior Risk & Compliance Analyst who is looking for the opportunity to leverage your technical and business skills to have a global impact in the dynamic Technology Business Management market. This position will report to the Manager, Security Risk and Compliance. You will work closely with IT teams, data center operations personnel, external business partners and most importantly prospective and existing customers in defining the appropriate policies, architectures, technologies, and practices to provide protection for our clients' information assets. This role provides a unique opportunity to interact directly with customers to support business-critical sales initiatives and to ensure ongoing customer satisfaction. Us:
Our team has broad responsibility for security and compliance across Apptio services and business units worldwide. We are highly motivated and dynamic individuals woven into a collaborative team where teamwork and flexibility are critical to our success. Responsibilities What we want you to do:
Contribute to the design, implementation, and operations of procedural and technical security controls Perform technical audits of IT General Controls, Information Security, SDLC, Application Security, and Operations. Determine audit scope, design testing strategies, test, evaluate, and document controls, identify control gaps and report audit issues based on significance, risk, and impact. Collect, review, analyze and verify the performance of internal controls, adherence to internal policy & procedures and client security expectations. Conduct staff interviews and walkthroughs; perform analysis to identify key business risks and controls. Manage follow-up on open audit issues and facilitate agreements with business process owners to ensure timely closure of action plans. Research, standardize, compose, edit, and approve documented policies and procedures/process for compliance and in accordance with accepted industry standards. Keep abreast of current and emerging technologies and recommend changes to audit programs as necessary. Engage with prospective and existing customers to understand their security expectations, communicate written and verbal technical, policy, and procedural security information to them, and participate in customer calls in support of sales initiatives as needed Qualifications Requirements:
Minimum 5
years' experience with technical security auditing Experience conducting and or participating in risk assessment audits with common control frameworks and standards such as ISO 27000 series, NIST CSF, SOC 1/2/3, and Cloud Security Alliance Cloud Controls Matrix (CCM) Experience working with privacy regulations such as GDPR, CCPA Experience working with cloud SaaS companies using public cloud services such as AWS, GCP, Azure, IBM Cloud CISA, CISM, CISSP (or equivalent) certification required Preferred
Qualifications:
Excellent interpersonal skills for building and establishing strong relationships with customers and key stakeholders, including senior staff, the security team, and the wider organization. The ability to audit, assess and identify compliance gaps in information security controls. Collaborative work style; effective communication; cross-functional teamwork. Ability to independently plan, organize and prioritize tasks. Strong general business skills and an aptitude for critical thinking and intellectual curiosity. Great attitude, independent, and takes ownership of all tasks from start to end. Highly organized and comfortable working in a rapidly changing and ambitious environment. Strong knowledge of desktop, server, application, and network security principles for conducting comprehensive business impact analysis and risk identification. Experience and/or knowledge of cloud computing and SaaS application delivery models. Experience and/or knowledge of information security tools/systems:
SIEM, DLP, IDS/IPS, etc.
Salary Range:
$80K -- $100K
Minimum Qualification
Auditing & Compliance, Risk & Quantitative AnalysisEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
