Compliance Analyst

Bishop Fox is the leading authority in offensive security, providing solutions ranging from continuous penetration testing, red teaming, and attack surface management to product, cloud, and application security assessments. We’ve worked with more than a quarter of the Fortune 100, half of the Fortune 10, eight of the top 10 global technology companies, and all of the top global media companies. Our Cosmos platform, service innovation, and culture of excellence continue to gather accolades from industry award programs including Fast Company, Inc., SC Media, and others. For more than 16 years, we've been contributing and giving back to the security community. We’ve published more than 16 open-source tools and 50 security advisories in the last five years alone. Learn more at bishopfox.com or follow us on social media.  

Given our exceptional growth, we are expanding and hiring a Compliance Analyst to join us on this exciting journey. In this role, you will be our customers' trusted advisor as part of the customer trust process.  You will be comfortable providing security and compliance expertise to key stakeholders, whether it be with technical or non-technical professionals, and personable is your middle name. Organization and thoroughness are two of your primary strong points. 

Responsibilities  

• Partner cross-functionally to coordinate responses to client requests, including Request for Proposals (RFP), addressing client security inquiries, questionnaires, and/or due diligence assessments.
• Provide accurate information about Bishop Fox’s security posture to clients demonstrating Bishop Fox’s commitment to security and adherence to internal requirements and applicable standards.
• Provide compliance and security expertise to Sales and Legal teams throughout sales process and as needed to ensure that responses and agreed upon commitments accurately reflect Bishop Fox’s security capabilities.
• Contribute and assist in the maintenance of a knowledge base of Bishop Fox security information to effectively address client inquiries about Bishop Fox’s security posture, coordinating with subject matter experts to ensure accuracy.
• Continuously enhance understanding of Bishop Fox’s services and supporting security posture to provide up to date and accurate information to client requests.
• Drive process improvement and automation to continuously mature response processes to support Sales/Legal in reducing the sales cycle and meet client expectations.
• Lead and manage remediation efforts from internal, third-party and client assessments/reviews to ensure effective and sustainable resolutions are implemented.
• Support other internal Information Security and Compliance initiatives to enhance the overall program.

Requirements 

• 2+ years of relevant experience in Information Technology Audit, Information Security, and/or Information Technology Compliance, with a bachelor’s degree.
• Functional knowledge of security principles, concepts, technologies, and security compliance frameworks (e.g., ISO 27001, SOC 2, NIST CSF, SIG).
• Ability to learn quickly to develop a solid grasp and technical understanding of Bishop Fox policies, controls, and service offerings. Ability to accurately articulate this information in clear and concise terms to clients.
• One or more of the following certifications is preferred: CISA, CISSP, CRISC, CISM, CCSK, GIAC, CCNA Security, CSX, and CTPRP.
• Consistent, extremely high attention to detail.
• Strong interpersonal skills with the ability to successfully build cross-functional relationships and collaborate with others.
• Comfortable in a fast-paced, rapidly changing environment.
• Excellent organizational and communication skills.
• Technical experience with one or more of the following tools is a plus: OneTrust (formerly Tugboat), Salesforce Case Management, Jira.

Bishop Fox has always allowed its employees to work remotely, and this role could work anywhere in Mexico. Our comprehensive benefits program is tailored to meet your needs at an affordable price. We embrace diversity and an inclusive culture. We value our employees and who they are, which fosters a powerful and collective talent base to successfully serve our clients and the security community with unparalleled expertise.    

Bishop Fox is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.  All new hires must pass a background check as a condition of employment.