Information Security Analyst, GR&C jobs in United States
cer-icon
Apply on Employer Site
company-logo

CrashPlan · 11 hours ago

Information Security Analyst, GR&C

positionUnited States
timeFull-time
remoteRemote
seniorityMid Level
money$105K/yr - $125K/yr
date3+ years exp

CrashPlan provides cyber-ready data resilience and governance in a single platform for organizations. They are seeking an Information Security Analyst to support risk management and compliance functions, focusing on security assessments, compliance audits, and risk remediation strategies.

Cloud StorageData StorageInformation ServicesInformation TechnologySoftware

Responsibilities

Conducting security and privacy risk assessments and security consulting engagements
Conducting information security assessments of third-party vendors
Maintaining reporting and tracking for information security and privacy risks and working closely with risk owners to remediate
Conducting periodic business continuity and disaster recovery testing
Responding to customer and prospect security questions related to CrashPlan's products and security posture
Supporting information security and privacy compliance audits and initiatives (e.g. SOC2, ISO 27001, PCI-DSS, GDPR) including day to day management of the GRC platform and continuous monitoring activities
Conducting internal audits
Managing the security training and awareness program and phishing simulations
Facilitating change management
Prioritizing risks efficiently and appropriately; challenging assumptions and methodologies
Triaging and prioritizing vulnerabilities for remediation
Developing and maintaining cross-functional partnerships, and partnering with SMEs to determine appropriate risk-based remediation strategies

Qualification

NIST 800-53ISO 27001SOC2GDPRCISSPCISMCIPPVulnerability scan toolsRisk assessmentsAzureAWSSecurity AwarenessPolicy management

Required

Bachelor's Degree in Computer Science, Information Systems, Cybersecurity, or related discipline and/or equivalent experience
3+ years professional experience in a similar role
Knowledge of/experience working with NIST 800-53, ISO 27001, SOC2, GDPR, DPF and other relevant security and privacy frameworks
Knowledge of/experience with third Party Security, Policy management, Customer Security Assurance, and/or Security Awareness
Experience conducting data privacy and security risk assessments and impact analysis

Preferred

One or more information security or privacy certifications (e.g. CISSP, CISM, CIPP)
Experience using vulnerability scan tools and threat and vulnerability management
Experience with Azure and AWS environments

Benefits

Medical
Dental
Vision
401k match

Company

CrashPlan

twittertwittertwitter
company-logo
CrashPlan® provides peace of mind through secure, scalable, straightforward endpoint data backup for any organization.
dateFounded in 2001
location
Minneapolis, Minnesota, USA
people-size51-200 employees
web-link
http://www.crashplan.com

Funding

Current Stage
Growth Stage
Total Funding
unknown
2022-08-03Acquired

Leadership Team

leader-logo
Kenneth Mesikapp
Chief Financial Officer
linkedin
leader-logo
Christine G.D. Schaefer
CMO
linkedin

Recent News

SalesTech Star
CrashPlan Deepens Collaboration with Microsoft to Strengthen Enterprise Data Resilience
2025-11-19
Business Wire
CrashPlan Expands in India to Power Next-Generation Backup Innovation
2025-10-27
Business Wire
CrashPlan to Highlight Cyber Resiliency and Data Protection Strategies at TechCon 365 Atlanta
2025-08-07
Company data provided by crunchbase