Bates White Economic Consulting · 13 hours ago
Information Security Compliance Analyst
Washington, DC
Part-time
Hybrid
Mid, Senior Level
$110K/yr - $130K/yr
5+ years expBates White Economic Consulting is a boutique consulting firm based in Washington, DC, recognized for its advanced economic and financial analysis services. The Information Security Compliance Analyst will support the firm’s information security strategy, manage compliance with security requirements, and oversee the information security portfolio while ensuring adequate controls are in place.
ConsultingGovernmentInformation TechnologyLegal
Responsibilities
Ensure proper oversight, risk management, and compliance with information security related requirements
Review and develop information security policies and procedures
Define, implement, and maintain security frameworks such as SOC 2, ISO 27001, NIST, and HITRUST
Lead and support all aspects of information security policies, standards, and processes as it relates to certification and compliance requirements
Manage ongoing compliance, evidence collection, and all processes related to annual audit reports
Work with the Technical Services team to identify, evaluate, select, and implement security protection measures and controls
Assist with information security awareness and training program
Conduct risk assessments of internal and cloud systems, policies, and procedures
Review threat intelligence feeds for new threats and works with staff to identify and resolve issues
Analyze and understand incident response processes and provides feedback to increase efficiency
Work with members of the Technical Services team to secure data, networks, and functions within the organization
Respond to client-driven security assessments of internal information systems, policies, and procedures and manage relationships with third party clients and vendors
Ensure adequate controls are in place to meet regulatory and industry standard security requirements
Design and perform periodic information risk assessments including compliance monitoring activities, penetration testing, and security audits
Participate in the design and implementation of recommended information security controls associated with new project application/system deployments
Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements
Qualification
Required
Bachelor's degree preferred
Minimum five (5) years of related work experience
Technical knowledge of computer systems and enterprise networks
Experience with global privacy laws (i.e. GDPR and HIPAA)
Experience with implementing security frameworks such as SOC 2, ISO 27001, NIST, and HITRUST
Demonstrated experience with monitoring and logging concepts, principles, and leading industry practices, including but not limited to security information, event management (SIEM), attack surface management, threat intelligence, incident response, vulnerability management, and log management
Demonstrated experience with vulnerability assessments, penetration tests, and security audits
Familiar with SIEM, MDR, E/XDR tools, Windows desktop and server security tools and topics, Azure security, Windows Event logging, syslog, and related telematics topics
Knowledge of industry regulations and guidelines
Knowledge of Microsoft Office Suite (Excel, Outlook, PowerPoint, and Word)
Strong written and verbal communication skills
Strong organizational skills
Ability to work under tight deadlines and prioritize responsibilities
Ability to handle and maintain confidential information
Proven experience working in a fast-paced environment
Ability to develop and motivate technology teams, inclusive of staff and third-party vendors/consultants
Ability to fulfill on-call duties for IT emergencies outside of Firm business hours
May require more than 40.0 hours per week to perform the essential duties of the position
Benefits
Tuition reimbursement up to $75K
Low healthcare premiums
Wellness benefits
Hybrid work environment with three coordinated in-office days per week
Open culture where your voice is heard, your input is sought, and your contributions are rewarded
Fun and engaging culture including frequent social events
Amenities that include a fitness center, rooftop terrace, standing desks, espresso, fresh fruit, breakfast and afternoon snack, billiards, and ping pong
Employee-driven community outreach program featuring fundraising events (e.g., trivia, game shows, cooking competitions, etc.), volunteer opportunities, and matching funds along with our pro bono program
Investment in your career through training programs, an assigned mentor and peer coach, and frequent feedback
Networking opportunities through employee interest groups, Women’s Network, International Network, Diversity-Inclusion Council, and BWProud Network
Company
Bates White Economic Consulting
Bates White Economic Consulting offers services to law firms, Fortune 500 companies, and government agencies.
201-500 employees
H1B Sponsorship
Bates White Economic Consulting has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)
2024 (18)
2023 (4)
2022 (20)
2021 (7)
2020 (7)
Funding
Current Stage
Growth StageLeadership Team
Stacy Reyan
Chief People Officer
Company data provided by crunchbase