IT Security Analyst
Toronto, Ontario
Docebo
Docebo's learning platform enables you to drive engagement, productivity, and connections with your customers, partners, and employees.Still not sure? We are a culture where values are at the center of everything we do. We also embody what we call the Docebo Heart. We trust our teammates, assume the best of one another, and also hold space for all the differences that make us better. đ
So what are you waiting for? Apply today! Join 800+ global Docebians and change the way people learn.Â
Are you ready to be a part of the learning revolution? đ
About This Opportunity:
The IT Security Analyst works collaboratively to support Docebo's risk and compliance activities across a broad range of frameworks, including NIST, GDPR, PCI, ISO, SOC, SOX and FEDRAMP. The role will be primarily responsible for supporting customer-facing communication and responses and conducting internal risk assessments. The IT Security Analyst has a proactive mindset and approach, a strong technical understanding, and is an excellent communicator.Â
Location: Toronto Reports to: Security Business Enablement Manager
Responsibilities:
- Review customer-facing security requests, and compile recommended responses.Â
- Respond to customer security questionnaires, and identify outstanding customer requirements that need to be addressed with Corrective Action Plans (CAPâs).
- Conduct third-party vendor risk assessment activities to evaluate the risk of Doceboâs supply chain.
- Conduct risk assessment activities according to the appropriate framework.
- Prepare draft reports and other management reporting deliverables.Â
- Conducts additional information gathering and risk assessments as needed; documents and reports results.
- Maintain risk management reporting dashboards and metrics in order to keep information complete, accurate, and current. Prepare and assist with the delivery of risk assurance reports to management.
- Other duties as assigned or requested.
Requirements:
- Bachelorâs degree in computer science or related field.
- Working knowledge of the OSI Model.
- 2+ years supporting audit and compliance activities.
- Knowledge of information security principles, trends, and best practices.
- Knowledge of GDPR requirements and implementation techniques.
- Experience building and using risk assessment processes.
- Effective communication and presentation skills.
- Excellent English communication skills
- Love the intersection of technology, business, and learning.
Preferred Requirements:
- Bachelorâs degree in computer science, Information Security, or Auditing.
- Certified Information Systems Auditor (CISA)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Privacy Professional (CIPP)
- Certified Information Systems Security Professional (CISSP)
- IAPP CIPP or CIPT
- CompTIA Security+
- FedRamp framework hands-on knowledge
About Docebo đHere at Docebo, we power learning experiences for over 3000 customers around the world with our easy-to-use, AI-powered Suite designed to close the enterprise learning loop. We have successfully achieved 2 IPOs (TSX: DCBO & NASDAQ: DCBO), been recognized as a Top SaaS e-learning Solution, and are growing exponentially in the process.Docebo is a global company with offices in North America, EMEA, APAC and more. Our people believe in six core values, simply defined and manifested in everything we do - Innovation, Simplicity, Accountability, Togetherness, Curiosity, and Impact. If this sounds like you, now is your time to join one of the fastest-growing learning technology companies on the market. Apply today!
Docebo is an Equal Employment Opportunity employer. We are committed to diversity and inclusion in our workforce. All qualified applicants and employees will receive consideration for employment regardless of their race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, citizenship status, age, disability, genetic information, or any other category protected under applicable law.
Any individuals requiring a reasonable accommodation to assist with their job search or application for employment should send an e-mail to recruiting_accommodations (at) docebo.com. The e-mail should include a description of the requested accommodation and the position youâre applying for or interested in.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index đ°
Tags: Audits AWS CIPP CISA CISSP Compliance CompTIA Computer Science CRISC FedRAMP GDPR NIST Privacy Risk assessment Risk management SaaS SOC SOX
Perks/benefits: Career development Flex hours Flex vacation Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Product Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Principal Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Cybersecurity Specialist jobs
- Open Chief Information Security Officer jobs
- Open Senior Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Ingénieur DevSecops H/F jobs
- Open Senior Cyber Security Specialist jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs
- Open IPS-related jobs