IT Security and Compliance Analyst
Pleasanton, California, United States
XOPS
XOPS is the first observability and runbook automation platform built for IT Operations to effectively visualize, manage, and automate the complete employee lifecycle.XperiencOps, Inc. is in search of an IT Security and Compliance Analyst who will be crucial in upholding our ISO 27001 and ISO 27018 certifications and managing various aspects of our security and compliance framework. This role demands a professional skilled in policy maintenance, security incident documentation, and vendor security assessments, preferably with experience using Vanta for compliance management.
Key Responsibilities
- ISO Certifications Maintenance: Actively maintain ISO 27001 and ISO 27018 certifications, regularly updating policies and ensuring compliance through tools like Vanta.
- Security Incident Documentation: Systematically record all security incidents, detected through monitoring tools or reported by users, aligning with our established security policies.
- Software Compliance and Certification Assistance: Aid in achieving and maintaining software certifications and compliance standards relevant to our industry, ensuring that all technical and procedural requirements are met efficiently.
- Vendor Security Assessments: Conduct detailed security assessments of vendors, reviewing SOC2 documentation and other relevant security credentials to ensure alignment with our security standards.
Requirements
- Bachelor’s degree in Information Technology, Cybersecurity, or related field, with professional certifications in ISO 27001/27018, CRISC, or CISM being advantageous.
- Demonstrable experience in IT security and compliance, with a strong understanding of ISO certification requirements and security incident management.
- Familiarity with compliance management tools, preferably Vanta, and experience in conducting vendor security assessments.
- Detail-oriented with strong analytical skills, capable of managing multiple priorities in a fast-paced environment.
- Effective communication skills, both written and verbal, with the ability to convey complex security and compliance information clearly.
Location
- This is a full-time, onsite position based in our Pleasanton, CA office. The successful candidate will be required to report to the office 5 days a week.
Benefits
- Competitive salary with comprehensive benefits.
- An engaging role in a dynamic and growing company with opportunities for professional development and growth.
- A collaborative work environment where your contributions to IT security and compliance are highly valued.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISM Compliance CRISC ISO 27001 Monitoring Security assessment SOC 2
Perks/benefits: Career development Competitive pay
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs