Search NYC Jobs

Zone & Co

Website LinkedIn All Job Openings

Apps from Zone & Co are designed to make life suck less for finance teams. Less work, more freedom, all on NetSuite.

NetSuite • Agile Billing • Revenue Management • Agile Monetization Platform • Cloud Software

201 - 500

Lead Security and Privacy Compliance Analyst

June 22

🏡 Remote – New York

⏰ Full Time

🟠 Senior

👮‍♂️ Security Engineer

AWS

Azure

Cloud

ERP

Oracle

Apply Now

Zone & Co

Website LinkedIn All Job Openings

Apps from Zone & Co are designed to make life suck less for finance teams. Less work, more freedom, all on NetSuite.

NetSuite • Agile Billing • Revenue Management • Agile Monetization Platform • Cloud Software

201 - 500

Description

• The Lead Security and Privacy Compliance Analyst ensures adherence to legal, regulatory standards. • Overseeing compliance with laws, regulations, and internal requirements. • Supporting audits for SOC 1, SOC 2, and ISO 27001. • Identifying and mitigating security and privacy risks. • Developing and updating IT policies and procedures. • Managing audit engagements and collaborating on compliance issues. • Maintaining existing protocols and coordinating audit procedures. • Engaging with colleagues to evaluate current compliance state.

Requirements

• Good working knowledge of compliance, security, governance, audit, and risk concepts and practices. • In-depth understanding of common security and privacy standards, regulations, and laws relating to a cloud software development company (e.g., SOC 1, SOC 2, ISO 27001/2, ISO 27017). • 5+ years' experience in performing information security audits, risk assessments, cyber risk management, or compliance. • Experience in vulnerability management, including lifecycle, follow-up, and reporting. • Ability to work independently. • Proficient in documenting risk and compliance activities, including how to ensure documentation is actionable rather than for the mere sake of compliance. • Experience in performing information security audits or risk assessments and familiarity with conducting security auditing processes professionally. • Excellent interpersonal, communication, and presentation skills and a level of professionalism in dealing with third parties. • Experience in developing security standards and guidelines based on best practices and industry standards. • Advanced computer skills and excellent written and oral communication skills.