Security & Compliance Analyst
3 weeks ago
**Role**: Security Compliance Analyst
**Department**: Risk and Compliance
**Introduction**:
Our goal at Pivotree is to help accelerate the future of frictionless commerce. We will help lead this change over the next decade because we believe a future where technology is embedded intimately into all aspects of our everyday lives can benefit everyone and will shape the interactions with the brands we love. We will help shape the future of frictionless commerce by working together with some of the best brands in the world and some of the best people in the industry to leverage converging technologies that will make it possible to accelerate frictionless commerce faster than ever.
This is a journey of technology acceleration combined with consumer readiness and adoption. We are looking for people capable of adapting relentlessly to the rapidly evolving world around us.
**Position Summary**:
As Security Compliance Analyst, you would be a member of an agile team that is focused on how to maintain and iterate cybersecurity policies and standards, evaluate control effectiveness, and comply with emerging laws and regulations at the scale and speed necessary to protect Pivotree’s people, data, and reputation by ensuring information security best practices are implemented and followed. You will have the opportunity to influence the controls designed to manage, develop, deploy, and support security requirements globally, as well as evaluate the effectiveness over those controls.
**Roles & Responsibilities**:
- Map security controls as per policy/process of different frameworks
- Facilitates third party external audits, such as, PCI, SOC1/2/3, ISO 27001 etc.
- Maintains central repository of Pivotree ISMS documentation, communicating and training staff on industry standards.
- Coordinate with different team members for evidence collection related to corporate compliances.
- Respond to security questionnaires from clients and business partners.
- Proactively identifies and resolves issues in controls and determines new controls to be put in place to address gaps.
- Manage and administer LMS environment, Oversee cybersecurity awareness and other associated training to maintain compliance.
- Monitors changes in regulations to ensure security controls remain in compliance.
- Support the enforcement of Corporate Security policies, procedures, and standards.
- Assists different BUs in risk identification, mitigation strategies, control documentation, evaluation of control design, evaluation of control operation, reporting of control deficiencies, and remediation strategies.
- Risk assessments and vendor security assessments
- Create cyber security reports and dashboards to highlight the effectiveness of the cybersecurity program.
- Effectively communicates technical and non-technical content to diverse audiences.
- Researches and evaluates security compliance risk in order to factor that information into the development of security standards, procedures, and controls to manage that risk, with a mindset of continuous process improvement.
- Assist with maintaining Risk Register
**Key Skills & Competencies**:
- A degree in Computer Science, Information Security, Cyber Security, Risk Management, or Information Technology or equivalent experience and accredited compliance management certification preferred
- Prior experience with GRC, LMS, VMS(what is this)? tools and platforms is required.
- Must be certified in a security discipline example CISA, CISM, CISSP etc.
- Understanding and experience of handling audits of cybersecurity risk and governance standards, with NIST, ISO27001, SOC1/2 and PCI/DSS experience is mandatory
- Good analytical abilities to prepare reports and assessments.
- Experience in identifying and performing data classification with the intent to ensure appropriate control and authorization are present.
- Quantitative Risk Management: Experience implementing quantitative risk methodologies and integrating them into business activities
- Must have adequate experience in completing 3rd party risk assessments.
- Respond to customer’s security questionnaires.
- Strong work ethic with attention to detail.
- Must be an initiator / self-starter and have the ability to work with mínimal supervision, be able to prioritize tasks, and manage their time to meet deadlines.
Pivotree is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive and accessible workplace.
-
Security Analyst
4 weeks ago
Vancouver, Canada Kobalt Security Inc. Full time**Are you looking for an opportunity that will help develop your career within the technology industry?** **Kobalt.io is looking for a proactive and technical Security Analyst!** **Job Description**: Kobalt.io is an equal-opportunity employer looking for team members who have a real passion for security. The Security Analyst - Delivery is an engaged...
-
Security Compliance Analyst
1 month ago
Vancouver, BC, Canada Fortinet Full timeDescription We are looking for a Security Compliance Analyst as a member of MIS team. This role will work to identify risk and ensure compliance with industry standards, relevant laws and regulations, industry best practices, and corporate policies. This position also assists in developing and maintaining internal security and operation framework. This...
-
Cyber Security Analyst
1 month ago
Vancouver, Canada TLS Global Resources Full timeA valued TELUS client requires a security risk analyst to define and measure corporate information security risks across the enterprise. This role is suited to an energetic, self-starter with foremost security analyst skills who can work within a dynamic, forward-thinking organization. **Roles and Responsibilities**: The Security Analyst will work closely...
-
International Compliance Analyst
23 hours ago
Vancouver, Canada CLIO Full timeis more than just a tech companywe are a global leader that is transforming the legal experience for all by while . Summary: Who you are: As we continue to grow at Clio, we are seeking an International Compliance Analyst to join our Compliance team within the Engineering sub-organization. As a part of the team, you will have extensive...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
3 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Security Analyst
7 days ago
Vancouver, Canada Netskrt Systems Inc. Full timeNetskrt's Infrastructure Team is looking for a Security Analyst to take a lead role in designing, implementing, and maintaining its security infrastructure; ensuring that the appropriate standards and frameworks for information security systems are implemented and adhered to. About Netskrt Netskrt
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
6 days ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
7 days ago
Vancouver, BC, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Cyber Security SOAR Engineer
7 days ago
Vancouver, BC, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
-
Vancouver, British Columbia, Canada Canonical - Jobs Full timeThe Security Compliance Engineer works in the office of the CISO in the Risk & Compliance team to help Canonical to achieve overall security & compliance goals and relevant certifications, as well as compliance with regulatory frameworks and other relevant standards.The team's role is to ensure that Canonical conducts its business processes in compliance...
-
Vancouver, Canada University of British Columbia Full timeStaff - Non Union Job Category M&P - AAPS Job Profile AAPS Salaried - Information Systems and Technology, Level D Job Title Lead Advisor, Information Security Compliance Department Information Security Compliance Support | Safety & Risk Services | VP Finance and Operations Compensation Range $7,278.33 - $11,372.33 CAD Monthly The Compensation...
-
Cyber Security SOAR Engineer
4 weeks ago
Vancouver, BC, Canada D3 Security Full timeAs a Cyber Security SOAR Engineer, you will play a pivotal role in strengthening our clients' security posture by designing and implementing robust Incident Response Playbooks. Your responsibility will extend beyond conventional consulting to actively showcase the capabilities of our solutions through compelling product demonstrations and ensuring the...
