79 applicants

Company

BlueAlly · 5 hours ago

Senior Compliance Analyst (SOC 1, SOC 2, ISO)

United States

Full-time

Remote

Mid, Senior Level

$100K/yr - $130K/yr

3+ years exp

Maximize your interview chances

Cyber SecurityInformation Technology

Work & Life Balance

Insider Connection @BlueAlly

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Lead the organization's comprehensive compliance program, including SOC 1/2, ISO 27001, ISO 20243, ISO 9001, ISO 20000-1, O-TTPS, and NetZero 2040 initiatives

Design, implement, monitor, and maintain controls across multiple frameworks while collaborating with internal and external business partners

Monitor changes to laws, regulations, and standards that impact compliance programs, and ensure timely updates to policies and procedures

Lead and handle all stages of compliance audits, ensuring successful completion across all frameworks

Conduct regular compliance audits and assessments to evaluate the effectiveness of internal controls and identify areas for improvement

Develop and maintain an integrated compliance program that efficiently addresses requirements across multiple standards

Coordinate and oversee sustainability initiatives related to NetZero 2040 compliance

Lead and respond to customer security questionnaires while collaborating with internal teams, and drive questionnaire response automation

Collaborate with internal teams (IT, security, and legal) to ensure alignment between business operations and regulatory requirements

Act as the main point of contact for external auditors during compliance reviews and certification renewals

Prepare detailed reports and dashboards to track compliance status and performance metrics

Assist in developing risk management strategies and mitigation plans related to compliance breaches or vulnerabilities

Create and maintain documentation for all compliance programs

Develop and deliver compliance training programs for staff

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

SOC 2 complianceISO 27001Compliance auditsSOC 1 complianceISO 20243ISO 9001ISO 20000-1O-TTPSNetZero initiativesCISA certificationCISM certificationCISSP certificationISO Lead Auditor certificationCompliance management tools

Required

3+ years of experience in compliance and security, with demonstrated experience in at least 2 of the following frameworks (must include SOC 2 and ISO 27001): SOC 1 and SOC 2 compliance programs, ISO 27001 Information Security Management Systems, ISO 20243 Counterfeit Avoidance standards, ISO 9001 Quality Management Systems, ISO 20000-1 IT Service Management, O-TTPS implementation and maintenance, Environmental sustainability programs, preferably including NetZero initiatives

Proven experience managing SOC 2 and ISO 27001 compliance programs is required

Prior experience successfully leading compliance audits is required

You are a strong collaborator, with experience working on teams composed of both technical and nontechnical members

You have a demonstrated ability to lead large-scale compliance projects, problem-solve, multitask, and have excellent organizational skills

You have excellent written and verbal communication skills, with experience presenting to key stakeholders and partnering with internal collaborators and external auditors

Experience with compliance management and automation tools

You thrive in a fast-paced environment focused on delivering exceptional IT solutions and services