Axonius · 9 hours ago
Cybersecurity Assurance Analyst
United States
Full-time
Remote
Mid Level
$115K/yr - $130K/yr
3+ years exp
Maximize your interview chancesAsset ManagementCloud Security
Insider Connection @Axonius
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Collaborate to develop, review, and update strategies, policies, and procedures related to cybersecurity and technology governance.
Employ strong project management skills to collaborate with stakeholders across the organization, identify and analyze cybersecurity risks, and develop and implement remediation plans within established timelines.
Conduct risk assessments and internal reviews to proactively identify potential compliance issues.
Maintain consistent follow-up with risk owners to ensure accountability and effective risk mitigation, driving the organization's risk management program toward its defined risk appetite.
Proactively manage compliance activities by ensuring timely responses to risk assessments, audits, and customer or prospect inquiries.
This includes preparing for and supporting internal and external audits, promptly addressing audit findings and closing identified gaps, maintaining and improving internal control standards, and staying current on relevant regulations and industry standards (including NIST and GDPR).
Assist with the vendor risk lifecycle, which requires collaborating with stakeholders across various teams, such as Corp IT, SecOps, Legal, and Procurement.
This includes maintaining vendor security information, conducting security assessments, ensuring compliance with security requirements, and providing technical expertise to evaluate the security posture of SaaS systems, integrations, and add-ons.
Collaborate with stakeholders to develop and deliver effective security awareness and GRC training programs.
Take ownership of tracking training compliance and identifying areas for program improvement.
Collaborate with stakeholders to develop, maintain, and update security policies, procedures, and standards.
Take ownership of tracking policy exceptions and ensuring proper approvals are obtained.
Assist with developing and maintaining comprehensive security metrics and reporting processes to track key performance indicators (KPIs), identify trends, and inform decision-making.
Track KPIs such as the number of open risks, time to remediate risks, and compliance with key regulations.
Continuously improve reporting accuracy, efficiency, and effectiveness to align with evolving organizational needs.
Foster strong partnerships with stakeholders across Legal, Technology, Sales, and Finance teams to ensure alignment on security objectives and initiatives.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Exceptional collaboration and communication skills, with a proven ability to build consensus and effectively communicate GRC activities to diverse audiences, including senior management.
A degree in a related field and 3+ years of experience in cybersecurity or IT, OR a minimum of 5 years of combined relevant education and experience in cybersecurity or IT.
Understanding of cybersecurity principles, compliance requirements, risk assessments, and GRC frameworks.
Understanding of relevant security regulations and frameworks (e.g., ISO 27001, SOC2, NIST CSF, etc.).
Proficient with common IT systems and applications, with the ability to quickly learn and navigate new technologies.
Strong analytical and problem-solving skills with the ability to work independently and develop creative solutions.
Self-starter with the ability to build partnerships and function effectively with limited oversight.
Ability to quickly learn various systems (e.g., Safebase, Anecdotes, Zendesk, Zip, Jira, etc) to support risk management and compliance activities.
Demonstrated willingness to adapt and adjust to meet evolving business needs.
Commitment to staying current on industry trends, emerging technologies, and relevant regulations.
Proactive and self-motivated approach to identifying areas for improvement and implementing solutions.
Preferred
Relevant certifications (Sec+, DoD 8570/8140, CRISC, etc.) are preferred.
Benefits
100% coverage of 2 different tiers of employee healthcare premiums.
Dental, vision, and 401k match.
17 weeks of parental leave for primary caregivers and 8 weeks for secondary caregivers.
Additional time off for important life events like marriage, birth of a grandchild, and more!
Corporate social responsibility partnerships, employee giving opportunities, and volunteer time off.
Market rate salaries, bonuses, or commissions.
Stock options for all full time employees with equity refresh opportunities.
Highly supported Employee Resource Groups (ERG).
Executive-level diversity and inclusion goals.
Training, events, and mentorship options.
Company
Axonius
Axonius is an asset inventory management platform that focuses on cybersecurity solutions and policies.
501-1000 employees
Funding
Current Stage
Late StageTotal Funding
$865MKey Investors
AccelStripesLightspeed Venture Partners
2024-03-05Series E· $200M
2022-03-08Series E· $200M
2021-03-09Secondary Market· $270M
Leadership Team
Dean Sysman
CEO and Co-Founder
Avidor Bartov
Chief Architect & Co-Founder
Recent News
Globe Newswire
2024-05-22
2024-05-20
2024-05-20
Company data provided by crunchbase
