Information Security Analyst – Compliance & Risk Management
Description
Company Overview:
When it comes to IT solution providers, there are a lot of choices. But when it comes to providers with innovative and differentiating end-to-end service offerings, there’s really only one: Zones – First Choice for IT.TM
Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Positioned to be the IT partner you need, Zones, a Minority Business Enterprise (MBE) in business for over 35 years, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed/Professional/Staffing services. Operating in more than 120 countries, leveraging a robust portfolio, and utilizing the highest certification levels from key partners, including Microsoft, Apple, Cisco, Lenovo, Adobe, and more, Zones has mastered the science of building digital infrastructures that change the way business does business ensuring whatever they need, they can Consider IT Done. Follow Zones, LLC on Twitter @Zones, and LinkedIn and Facebook.
Position Overview:
As the Information Security Analyst - Compliance & Risk Management, you will analyze management and technical controls to ensure compliance with security requirements. This includes mapping regulatory and security requirements across the information security framework and tracking enterprise compliance across multiple security frameworks. You will also assist internal teams in preparing for internal and external assessments and audits, collaborate on critical IT projects to address security policy and risk issues, and develop key performance metrics to track and ensure compliance with policies and standards.
What you’ll do as the Information Security Analyst – Compliance & Risk Management:
Employees employed in the role of Information Security Analyst – Compliance & Risk Management shall be required to apply their independent minds and demonstrate intellectual abilities in their decision-making.
The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- Analyze management and technical controls to ensure specific security and compliance requirements are met.
- Map regulatory/security requirements across the information security framework.
- Track enterprise compliance across multiple security frameworks including ISO27001, 27701, SOC2, GDPR, and PCI-DSS, maintaining up-to-date records of requirements and corresponding mitigating controls.
- Help internal teams with readiness for internal/external assessments/audits against industry standards and review programs/documentation for conformance.
- Collaborate on critical IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
- Develop key performance metrics to track and ensure compliance with established policies and standards.
What you will bring to the team:
- 5-7 years of information security experience.
- Experience with ISO 27001, SOC 2, and PCI-DSS compliance.
- Strong communication skills (verbal and written).
- Ability to meet deadlines and work under pressure.
- Experience of working in US-based multinational organizations is a plus.
- Security certifications such as CISSP/CISA, ISO27001.
- Extensive experience with auditing vendors/service providers/partners for compliance with security.
- Experience of working extensively with the Engineering teams (system admin, network admin, security admin, application teams) to effectively communicate the compliance requirements
- Bachelor’s degree in Computer Science or Information Technology.
Zones offers a comprehensive Benefits package
At Zones, we are committed to fostering an inclusive and diverse workplace where every team member is valued and supported. We offer life insurance, optional health insurance, and retirement benefits in line with Company policy. Employees also enjoy additional perks such as the Voluntary Pension Scheme, EOBI, complimentary meals, and access to our in-house gym.
We take pride in being an equal opportunity employer and remain dedicated to maintaining a workplace free from discrimination of any kind. If you are passionate about driving innovation in IT, sales, engineering, or operations, Zones provides a dynamic and collaborative environment to help you grow your career.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.
Job timings: 08:00 PM to 05:00 AM (Pk time)