Security Compliance Analyst

11 months | Hybrid | Multinational Tech Company

Our client is looking for an experienced Security Compliance Analyst to join their team too support in Cloud Security / Cloud GRC areas.

Job Description:

• Support significant programs of work across various levels of XFNs in Cloud Security and Cloud GRC areas.
• Collaborate with team members and stakeholders to understand or identify defined work problems and program goals, obtain prioritized deliverables, and discuss program impact.
• Designing, implementing, and/or assessing security controls and frameworks
• Implement maturity frameworks across multiple programs factoring in emerging regulations and proactive detection of risks.
• Assess and document emerging regulatory impact on established policy and control frameworks
• Identify, communicate, and collaborate with relevant stakeholders within one or more teams to drive impact and work toward mutual goals.
• Establish learnings, best practices, standardized frameworks and tools across GRC and related teams.
• Develop detailed program/project plans in partnership with XFN teams.
• EU Security Office - Document compliance positions for NIS 2 and RED, support SRA delivery
• Cloud Security GRC - Conduct deep-dives into Cloud environments; document GRC-driven positions, and look for opportunities to improve Cloud Security Posture

Qualifications:

• At least 5-7 years in Information Security.
• Deep and demonstrable familiarity with key Cloud Security, Risk Management and Compliance concepts.
• (+5) of hands-on security experience with at least one of the major CSPs (AWS, GCP, Azure)
• Experience in a GRC function overseeing Cloud implementation at scale.
• Experience in designing and implementing controls of frameworks.
• Experience in assessing security deficiencies in information systems and recommending mitigating controls in a corporate environment.