Security Compliance – Junior Analyst

Company Description

At ServiceNow, our technology makes the world work for everyone, and our people make it possible. We move fast because the world can’t wait, and we innovate in ways no one else can for our customers and communities. By joining ServiceNow, you are part of an ambitious team of change makers who have a restless curiosity and a drive for ingenuity. We know that your best work happens when you live your best life and share your unique talents, so we do everything we can to make that possible. We dream big together, supporting each other to make our individual and collective dreams come true. The future is ours, and it starts with you. 

Job Description

What you get to do in this role
 
We are looking for a highly motivated, collaborative and technically experienced Security Compliance - Junior Analyst with ability to understand and influence cloud operational and security processes, effectively communicate ServiceNow’s controls including intent, and drive changes within the organisation through effective testing. The successful candidate must be reliable, resourceful and have a “can-do” attitude.  
 
You will be a key member of our team and play an important role in defining the Security and Compliance framework for a leading cloud company. In this role you will be required to demonstrate ability to analyse difficult problems, think out-of-box and provide pragmatic solutions and recommendations.   

ServiceNow current compliance initiatives are focused on, but not limited to Australia’s IRAP, Singapore MTCS, Japan’s ISMAP, and other global programs such as ISO 27001, ISO 27018, PCI, SSAE 18, and SOC 2. Security Compliance Junior Analyst will be involved in driving and measuring compliance for the cloud business systems, control areas, process, and product for company compliance initiatives.    
 
Responsibilities

• Perform activities to help measure and monitor compliance with company policies and procedures 
• Facilitate certifier requests and information gathering for audit activities and lead onsite audits
• Conduct activities to comply with the various Government Cyber Security requirements within the APJ
• Successfully drive security compliance testing activities across various teams within the organisation 
• Contribute by enhancing and maturing the existing common control framework 
• Liaise with Risk Management and conduct security risk assessment activities  
• Help our customers understand ServiceNow’s security and compliance control environment 
• Contribute towards enhancing the GRC tool and processes to meet compliance business needs 

Qualifications

To be successful in this role, we need someone who has

• 2+ years working in the field of security compliance, security risk or audit, or general cyber security.
• Direct and recent working experience with any of the following compliance programs: IRAP, MTCS, ISO 27001, PCI, SSAE18, and/or SOC2
• Prior experience working in the Security and Compliance group at a SaaS/Cloud company or with Security and Risk practice of a Big Four firm is desirable
• Relevant professional certifications such as CISSP, CISA, CISM are desirable
• Demonstrated experience working in large projects 
• Experience using a GRC system
• Excellent report writing skills, ability to prepare compliance reports and associated metrics 
• Excellent verbal and written communication skills 
• Be able to work effectively with other members of the GRC organization to drive results 

Work Environment 

We provide competitive compensation, generous benefits and a professional atmosphere. This is a very collaborative and inclusive work environment where individuals strong on aptitude and attitude will have an opportunity to grow their professional careers through working with some of the most advanced technology and talented developers in the business. 

Additional Information

ServiceNow is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status or any other category protected by law.

Please Note: Fraudulent job postings/job scams are increasingly common. Click here to learn what to watch out for and how to protect yourself. All genuine ServiceNow job postings can be found through the ServiceNow Careers site.

From Fortune. © 2022 Fortune Media IP Limited All rights reserved. Used under license.

Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, ServiceNow.