IT Security Analyst G5951
San Francisco, California
Nisum
Learn how Nisum designs and builds customized eCommerce platforms to power enterprises large and small.What You'll Do
- Member of Information Security Governance, Risk and Compliance GRC Team.
- Responsible for leading, maturing, and reporting on the following Information Security Programs:
- Information Security Policies & Standards across all Information Security domains.
- Privacy Data Protection in partnership with the Legal Privacy Team.
- Security Awareness & Training across the entire Gap Inc. organization.
- Information Security Third-party Risk Management TPRM in partnership with Information Security Product Security and other stakeholders in contract lifecycle management CLM.
- Broad comprehension across all Information Security Domains.
- Familiarity with cybersecurity frameworks, such as NIST, ISO 27001, SOC2, and PCI-DSS.
- Disciplined in Compliance Management & Quality Management.
- Subject matter expert of Third-Party Risk and Privacy Management processes and tools.
- Proficient in Reporting & Analytics in Excel/Smartsheet/PowerPoint.
- Familiarity with contract lifecycle management CLM and IT software.
- Technical writing and document version control.
- Audit Preparation & Response.
What You Know
- Demonstrated expertise and substantial experience in Information Security Governance, Risk Management, and Compliance (GRC) functions.
- Experience in Information Security GRC Functions.
- Passion for Compliance Management and Continual Improvement.
- Highly organized, patient, dedicated, and resilient.
- Proficient in influence, collaboration, and compromise.
- Agile in adapting to different enterprise software.
- Excellent interpersonal, verbal, and written communication skills.
- Strong strategic thinking, analytical, and problem-solving skills.
- Effective execution ability with a sense of urgency.
Education
- Bachelor’s degree in Computer Science, Information Systems, Engineering, Computer Applications, or a related field
Benefits
- In addition to competitive salaries and benefits packages, Nisum US offers its employees some unique and fun extras:
- Professional Development - We offer in-house technical training and professional learning programs aimed at developing skills across a broad spectrum of topics such as technology, leadership, role-based training, and process expertise. We also offer an annual stipend for employees to attend external courses in order to maintain professional certifications
- Health & Wellness Benefits - We believe that your health and welfare are important, and we strive to ensure that you have affordable options available to you, including some plans that are subsidized for employees and their families up to 90%. We also have dental and vision plans in the US where Nisum pays 100% of premiums for employees
- Volunteerism Pay - We believe in giving back and in the US, our employees are eligible for up to 40 hours of paid time off each year to volunteer towards the causes that they are most passionate about. This is in addition to personal PTO and paid holidays
- Additional Benefits - We offer all the other important benefits to keep employees and their families healthy and financially secure, such as 401(k) retirement savings with a company match, pre-tax parking and transit programs, disability insurance, and Basic Life/AD&D, alongside exclusive employee discounts on a wide variety of products and services
Compensation Band
- $125-130k per year
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Analytics Blockchain Compliance Computer Science Governance ISO 27001 NIST Privacy Product security Risk management SOC 2 Strategy
Perks/benefits: 401(k) matching Career development Competitive pay Health care Insurance Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs