Information Security Analyst

⚡️ Why Altium?

Altium is transforming the way electronics are designed and built. From startups to world’s technology giants, our digital platforms give more power to PCB designers, supply chain, and manufacturing, letting them collaborate as never before.

• Constant innovation has created a transformative technology, unique in its space
• More than 30,000 companies and 100,000 electronics engineers worldwide use Altium
• We are growing, debt-free, and financially strong, with the resources to become #1 in the EDA industry

About the Role: 

As an Information Security Analyst, you will work in a cross-functional team environment with a variety of team members including Legal, Sales, Product, Marketing and more. You will participate in all aspects of managing client and vendor risk assessments and ensuring compliance with client contractual, regulatory and legal security requirements. You will help operate risk management processes to meet customer needs, satisfy external audit requirements and address internal security objectives.

 A Day in The Life of Our Information Security Analyst: 

• Complete comprehensive information security risk assessments on potential and existing third-party service provider relationships
• Act as a liaison between business owners and third-party service providers to complete risk assessment activities and to establish and track acceptable risk mitigation actions
• Keep abreast of industry and third-party risk security management practices and advancements and incorporate that knowledge into daily work activities
• Coordinate, monitor or otherwise perform periodic vendor performance reviews for adherence to contractual SLAs
• Own and drive risk analysis and operate GRC controls and help implement industry best practices for teams across the organization
• Provide support external security audit reports and frequently asked questions to the internal teams
• Hold meetings with customers to answer questions about our security program and controls
• Track and report on trends in repeated customer asks and points of friction, and work with internal teams to help prioritize and define customer-related requirements
• Develop the customer trust program to maintain transparency with Altium’s external-facing audience on compliance commitments, policies, and security posture 
• Assist with other GRC activities as needed 
• Provide approved responses to client inquiries and maintain library of records, documentation, and responses
• Drive documentation and management of of policies, procedures, risks and controls in the GRC platform. 
• Coordinate with stakeholders to ensure all policy exceptions/risk acceptances are managed in accordance to Altium’s Information Security policies and standards

Who We’re Looking For and What You will Need For This Position:

• Bachelor's degree in business administration, computer science, information technology, or a related field of study, or equivalent experience
• 2+ years of experience working in the technology risk and compliance field
• Experience with at least one industry-standard risk/control framework: ISO 27001, AICPA SOC 2, COSO, NIST CSF, CSA, COBIT, etc.
• Basic knowledge of SaaS and Cloud (AWS, GCP, and others) environments
• Good understanding of fundamental information security concepts
• Excellent written and verbal communication skills

Preferred Technology Experience

• Experience in GRC, security, or security-adjacent fields
• Security certification is a plus
• Knowledge and experience with information security standards, rules and regulations related to information security and data protection: GDPR, CCPA, etc
• Experience working in or with a technology organization is preferred

Benefits

• 🏥 Medical, Dental, Vision Plans and HSA and FSA accounts
• ❤️ Basic Life and AD&D insurance; disability coverage where applicable   
• 🌅 Retirement 401(k) Plan Option with Altium match
• 🧘 Calm App and Employee Assistance Program 
• 🏖 Paid holidays plus a “Choice Day” off per quarter       
• ✈️ Paid time-off on arising schedule upon key milestones
• 🤒 Sick time for Dr. appointments or family health needs   
• 👶 Family medical, maternity, paternity, and military leave
• 🏡 Flexible working arrangements available based on role and location
• 🥳 Employee referral and employee-of-the-month programs  
• 🖥 Home internet allowance
• 📚 Professional development support
• 🥪 Free lunch, snacks, and drinks in the office
• 🚗 Free parking

🎯 What Matters to Us

• Big-thinking in pursuit of purpose
• Diversity of thought
• Courage of conviction
• Transparency of intent
• Ingenuity of AND
• Agility in action
• Adaptability of approach
• Grit in pursuit of mission

🌍 Also, we would like you to know

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

💡 Learn more about why a career at Altium is an opportunity like no other: https://www.youtube.com/watch?v=cAYCOLpPLPE 

✈️ Altium Benefits: https://careers.altium.com/#s-benefits 

👏 Are you already an Altium employee? Please apply directly through our internal Greenhouse job board. If you have questions, please contact HR.