Apply on Employer Site

Locus Robotics · 19 hours ago

Senior Compliance Analyst

United States

Full-time

Remote

Mid, Senior Level

3+ years exp

Locus Robotics is a global leader in warehouse automation, delivering unmatched flexibility and unlimited throughput. They are seeking a results-oriented Compliance Analyst to help execute compliance initiatives, ensuring compliance standards are met and customer needs are satisfied.

E-CommerceIndustrial AutomationLogisticsRoboticsWarehouse AutomationWarehousing

Comp. & Benefits

Responsibilities

Provide subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise programs, policies, and procedures to be compliant with all applicable regulations, including GDPR, CCPA, SOC2, HIPAA, PCI

Serve as the primary point of contact for responding to customer security questionnaires, RFPs, and due diligence requests

Assist team members and internal clients in addressing highly complex security and compliance issues applicable to enterprise environments

Develop, implement, maintain, and oversee enforcement of security policies

Conduct regularly scheduled audits on systems and host third-party audits as required in order to achieve certifications

Define the requirements and validate the procedures and audit testing methodology

Work very closely with many cross-functional teams to communicate and integrate control requirements (Finance, Product, IT, Legal, Supply Chain)

Have the ability to utilize working knowledge of information security best practices such as: NIST 800 series, ISO 27001 series, GDPR, etc

Interpret standards, requirements, and their application to the overall enterprise environment in the most reasonable and cost-effective manner

Collaborate with technology architects, engineering, and security teams to define and implement security processes and procedures based on industry-standard best practices and compliance requirements

Work with cross-functional teams to prepare ongoing client reporting, information for prospects, and marketing materials

Provide training to teams as needed

Qualification

CISACISMCISSPGDPRNISTISO 27001SOC2Compliance experienceInnovative thinkingCommunicationLeadership

Required

BS or Master's in a technology-related field and a professional security certification such as CISA, CISM, CDPSE, CISSP

Knowledge of internal controls environments and how that drives a SOC2 Type II attestation is a plus

Familiarity with IT compliance legislation, including GDPR and similar regulations or statutes, and ability to leverage other internal/external resources

3-5 years' experience working in a combination of compliance, risk, and information security positions

Working knowledge of common information security management frameworks, such as NIST

Knowledge of ISO 27001 is a plus

Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

Excellent written and verbal communication skills and a high level of personal integrity