Our client is looking for an experienced Compliance and Security Analyst who will lead compliance programs and ensure alignment with frameworks such as SOC 2, ISO 27001, HIPAA, and more. The ideal candidate will have hands-on experience in policy development, implementing SOC 2 Type 1 and Type 2, and managing technical controls across cloud platforms like AWS, GCP, and Azure.
Key Responsibilities:
- Develop and maintain policies and procedures to ensure compliance with SOC 2, ISO 27001, and other standards.
- Lead SOC 2 Type 1 and Type 2 implementation projects.
- Oversee and implement technical controls in cloud environments, including AWS, GCP, and Azure.
- Perform security audits and risk assessments to identify vulnerabilities and enhance the security posture. Collaborate with cross-functional teams to integrate compliance and security best practices.
- Stay updated on regulatory changes and industry best practices.
- Utilize compliance platforms such as Drata, Vanta, and SecureFrame.
Qualifications:
- 4 to 15 years of experience in compliance and cybersecurity.
- Previous experience as a compliance or security analyst.
- Strong experience in working directly with clients.