Cloud Security Analyst
2 settimane fa
Hey you Want to work for one of the fastest growing SaaS companies in the world?
We're building the next generation of learning software that companies like AWS, Netflix, Opentable and L'Oreal rely on to deliver training. We believe learning is for everyone, and that we all have something we can learn from each other. We rely on one another to continuously innovate our products and processes to create an exceptional experience for our employees, customers and partners.
Still not sure? We are a culture where values are at the center of everything we do. We also embody what we call the Docebo Heart . We trust our teammates, assume the best of one another, and hold space for all the differences that make us better.
So what are you waiting for? Apply today Join 900+ global Docebians and change the way people learn.
Are you ready to be a part of the learning revolution?
About This Opportunity:
The role is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value.
It is essential to ensure that Docebo adheres to regulatory frameworks and maintains robust security measures. Collaborating with internal teams and external stakeholders, they effectively address compliance and security requirements, safeguarding the company's operations and reputation. This role involves continuous improvement efforts and updating on emerging compliance regulations, security threats, and industry best practices. The role also provides training and guidance to internal teams on compliance requirements and security protocols.
Reports to: Business Enablement Manager - Security
Location: Biassono, Lombardy, Italy (hybrid)
Responsibilities:
- Customer Engagement and Response: respond to customers' security and privacy-related inquiries, compile comprehensive responses (mainly RFI, RFP, and RFQ), and address compliance questionnaires, ensuring timely and accurate information dissemination and actively supporting the sales process.
- Customer Audit Support and Documentation: Coordinate Docebo's activities related to customer compliance audits, assist with agreement and term reviews, and prepare management reports on compliance and security initiatives in collaboration with the GRC team.
- Support Internal Compliance Management: maintain internal compliance documentation, and coordinate the conduction of risk assessments and internal company audits to ensure organizational readiness in collecting the needed evidence.
- Vendor Risk Assessment and Monitoring: Support the evaluation of company third-party vendor-associated risks, monitor security controls, and maintain risk management reporting dashboards to mitigate risk and effectively qualify company suppliers; in collaboration with the GRC team.
- Security Awareness: develop and coordinate the implementation of security & privacy awareness programs to promote a culture of security consciousness; in collaboration with the GRC team.
- Cross-functional collaboration: collaborate across the company departments to align compliance, security, and privacy efforts with business objectives; consult the company's departments to assess changes and compliance obligations and support updating company compliance programs and controls.
- Documentation and Reporting: Maintain comprehensive documentation of compliance activities, including policies, procedures, and audit findings, and prepare reports for management and regulatory authorities; in collaboration with the GRC team.
- Trust Page management: support the definition of content, and keep it updated. Gather information regarding clients' and prospects' requests related to the content of the Trust Page to offer expertise and feedback to other departments to ensure that the content is relevant and up to date with the latest standards.
- Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills
- 4+ years of relevant work experience
- Working experience supporting audits and compliance & security activities for SaaS companies
- Working knowledge of information security principles, trends, and best practices, specifically cloud environments and services (eg: AWS, Azure, GCloud)
- Knowledge of GDPR requirements and other data privacy laws (eg: CCPA, PIPL)
- Knowledge of ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, ISO 9001, and AICPA/ISAE 3000 SOC 2 & PCI
- Knowledge of CFR21 Part 11
- Bachelor's degree in computer science, information security, auditing, law, or similar
- Certified Information Systems Auditor (CISA)
- Certified Information Privacy Professional (CIPP, IAPP or CIPT)
- CompTIA Security+
- Proficiency in tools such as Drata, RFP.io, and similar
- Working experience implementing, evaluating, and assessing cybersecurity and compliance standards for the National Institute of Standards and Technology (NIST) or FedRAMP to further the assessment and secure operation of the FedRAMP cloud-based systems
-Generous Vacation Policy, plus 2 extra floating holidays to use for religious or cultural events that matter to you
-Employee Share Purchase Plan
-Career progression/internal mobility opportunities
-Four employee resource groups to get involved with (the Docebo Women's Alliance, PRIDE, BIDOC, and Green Ambassadors)
-WeWork partnership and "Work from Anywhere" program
Hybrid Office Model
We believe when people are together, they develop deeper relationships and accelerate innovation. Because of this, all Docebo employees worldwide are "hybrid." We encourage in-person collaboration while supporting work-from-home when employees need dedicated focus time, allowing Docebians to do their best every day. Each team leader is able to decide how often their teams come into the office, considering the needs of the team and the employee's needs. Our Talent Acquisition team will let you know about the role you are applying for and the hybrid details during the first interview.
About Docebo
Here at Docebo, we power learning experiences for over 3000 customers around the world with our easy-to-use, AI-powered Suite designed to close the enterprise learning loop. We have successfully achieved 2 IPOs (TSX: DCBO & NASDAQ: DCBO), been recognized as a Top SaaS e-learning Solution, and are growing exponentially in the process.
Docebo is a global company with offices in North America, EMEA, APAC and more. Our people believe in six core values, simply defined and manifested in everything we do - Innovation, Simplicity, Accountability, Togetherness, Curiosity, and Impact. If this sounds like you, now is your time to join one of the fastest-growing learning technology companies on the market. Apply today
Docebo is an Equal Employment Opportunity employer. We are committed to diversity and inclusion in our workforce. All qualified applicants and employees will receive consideration for employment regardless of their race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, citizenship status, age, disability, genetic information, or any other category protected under applicable law.
Any individuals requiring a reasonable accommodation to assist with their job search or application for employment should send an e-mail to recruiting_accommodations
(at) docebo.com. The e-mail should include a description of the requested accommodation and the position you're applying for or interested in.#J-18808-Ljbffr
-
Cloud Security Specialist
2 settimane fa
Italia CoreView A tempo pienoJob SummaryWe are seeking a highly skilled Cloud Security Engineer to join our team at CoreView. As a key member of our security team, you will be responsible for building and maintaining secure cloud services, ensuring robust security measures from design to implementation.### Responsibilities Enhance and sustain robust security solutions for cloud...
-
Cloud Security Engineer
2 settimane fa
Italia CoreView A tempo pienoCoreView is the Global Leader in Effortless M365 Security, Governance, and Administration. Offering an end-to-end solution that stretches across the whole M365 ecosystem; from your tenant level configurations, right up to your most critical workloads. Created by M365 experts, for M365 experts, CoreView makes best practice for M365 effortless by...
-
Cloud Security Engineer
2 settimane fa
Italia Satispay A tempo pienoAbout Satispay At Satispay, we're not just reimagining payments; we're pioneering a movement toward simplicity and accessibility. Picture yourself at the forefront of innovation, leading the way in revolutionizing payments - and beyond! - across Europe, alongside a vibrant community of like-minded individuals driven by a shared vision: simplifying...
-
Cloud Security Specialist
2 settimane fa
Italia Avanade Inc. A tempo pienoJob DescriptionNel ruolo di Cloud Security Specialist ti occuperai di proteggere il cyber space delle aziende clienti, garantendo la sicurezza di dati/informazioni e rilevando eventuali vulnerabilità e falle dei sistemi.ResponsabilitàIdentificare i rischi ed eseguire revisioni della sicurezzaProgettare soluzioni di sicurezza sostenibili e proporre offerte...
-
Cloud Security Architect
3 settimane fa
Italia Ion Group A tempo pienoAbout ION GroupWe're a pioneering financial technology company offering trading and workflow automation solutions, high-value analytics, and strategic consulting to corporations, financial institutions, central banks, and governments. Our innovative approach has enabled over 40% of the world's largest companies to use our solutions. We've achieved...
-
Chief Cloud Security Strategist
2 settimane fa
Italia Worldline A tempo pienoWorldline is a leader in the global payments technology industry, shaping how the world pays and gets paid.We are looking for a highly skilled IT Security Architect to join our Cybersecurity team at Worldline Merchant Services Italia.Job DescriptionWe design and operate leading digital payment and transactional solutions that enable sustainable economic...
-
Cloud Security Architect Lead
7 giorni fa
Italia Worldline A tempo pienoWelcome to Worldline, a pioneer in the payments technology industry. We're shaping how the world pays and gets paid.We're looking for a highly skilled Cloud Security Architect to join our Cybersecurity team at Worldline Merchant Services Italia. This role involves evaluating and addressing security aspects while balancing the company's short, medium, and...
-
Cyber Security Risk Analyst
2 settimane fa
Italia ION Group A tempo pieno**Job Title:** Cyber Security Risk Analyst**Job Summary:ION Group is seeking a highly skilled Cyber Security Risk Analyst to join our Governance, Risk and Compliance Team.**Responsibilities:Document and monitor risk and control environment to identify existing and emerging risks and issues;Evaluate and document issues related to changes in the risk...
-
Cyber Security Analyst
2 settimane fa
Italia Ion Group A tempo pieno 40.000 € - 60.000 €Cyber Security Analyst Job DescriptionWe are seeking a highly skilled Cyber Security Analyst to join our team in Italy. As a Cyber Security Analyst, you will play a critical role in supporting the division's security strategy through the identification, mitigation, and remediation of information security risks to the business.Key Responsibilities:Protect and...
-
Security Operations Analyst based in Rome
2 settimane fa
Italia Marlink A tempo pienoWherever our customers are in the world, we help them digitalise and optimise their remote business processes using advanced hybrid network solutions and digital technologies. Our teams work together across the globe, using constant innovation, expertise and applied technology to bring systems and people together with a future focus. We push boundaries. We...
-
Cyber Security Analyst: ruolo, compiti, competenze, guadagno
2 settimane fa
Italia ADAMI & ASSOCIATI A tempo pienoIl cyber security analyst è una figura fondamentale all’interno dell’azienda. Il suo lavoro è essenzialmente quello di garantire la sicurezza dei sistemi informatici . Anche la più piccola impresa ormai deve fare largo affidamento su software e hardware, oggi più che mai bombardati da minacce esterne. Assumere una figura capace di garantire che...
-
Cyber Security Analyst
2 settimane fa
Italia Michael Page International Italia S.r.l. A tempo pienoPrestigioso cliente finale Importante progetto di start-up della funzione di Cybersecurity Azienda Il nostro cliente è un'importante azienda del settore Telco. Offerta Nell'ambito della struttura Security Operations Center, la risorsa indirizza la rilevazione e la gestione di incident di sicurezza informatica e/o presidia le evoluzioni...
-
Cyber Security Analyst
2 settimane fa
Italia Dedagroup spa A tempo pienoDeda Cloud Sede: Bolzano, Trento, Bologna, Milano, Padova, Verona, Roma, Ravenna, Tortona, Torino Esperienza: Almeno 2 anni Dedagroup affianca le imprese, gli istituti finanziari e gli enti pubblici con soluzioni applicative e servizi IT da oltre 40 anni. Siamo nati con l’informatizzazione dei processi, abbiamo accelerato con Internet e il Cloud e...
-
Cyber Security Analyst
2 settimane fa
Italia Reply A tempo pienoTi piacerebbe diventare un esperto di Cybersecurity e far parte di un team che affronta ogni giorno nuove sfide rilevando ed analizzando reali tentativi di attacchi cyber? Allora potresti dedicare qualche secondo alla lettura del nostro annuncio! Cosa imparerai lavorando con noi? Siamo alla ricerca di un Cyber Security Analyst da inserire nel Blue Team del...
-
Junior Security Analyst
2 settimane fa
Italia Leonardo SpA A tempo pienoJob Description: Leonardo è un gruppo industriale internazionale che realizza capacità tecnologiche multidominio in ambito Aerospazio, Difesa & Sicurezza. Con oltre 51.000 dipendenti nel mondo, l'azienda ha una significativa presenza industriale in Italia, Regno Unito, Polonia, e Stati Uniti, e opera in 150 paesi anche attraverso aziende controllate,...
-
IT Junior Security SOC Analyst
2 settimane fa
Italia Kyndryl A tempo pienoWho We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role ...
-
Cyber Security Analyst
2 settimane fa
Italia Dedagroup spa A tempo pienoBolzano, Trento, Bologna, Cassina De' Pecchi, Milano, Padova, Verona, Roma, Ravenna, Tortona, Torino Sarai inserito/a all’interno di Deda Cloud, Azienda del Gruppo specializzata nel supportare le esigenze di business con un ecosistema di servizi gestiti e soluzioni Cloud. In particolare, a supporto del Blue Team di Cyber Security, svolgerai...
-
Security Engineer
2 settimane fa
Italia Cleafy A tempo pieno 10 €Cleafy is a SaaS company, a team of fraud hunters, cybersecurity experts, data scientists, and software engineers that since 2014 share the same dream: make technology a safer place. Every day, we work side by side with our customers to help them safely navigate digital opportunities, while growing their business. Cleafy has recently secured a €10...
-
Senior Cyber Security Analyst
1 settimana fa
Italia Michael Page International Italia S.r.l. A tempo pienoPrestigioso cliente finale Importante progetto di start-up della funzione di Cybersecurity Azienda Il nostro cliente è un'importante azienda del settore Telco. Offerta Nell'ambito della struttura Security Operations Center, la risorsa indirizza la rilevazione e la gestione di incident di sicurezza informatica e/o presidia le evoluzioni...
-
Cyber Security Strategist
3 settimane fa
Italia Nadara Ventures A tempo pienoJob Title: Head of Cyber SecurityWe are seeking an experienced professional to lead our Cyber Security function at Nadara Ventures. As the Head of Cyber Security, you will be responsible for identifying and mitigating threats, ensuring the security of our organisation, and safeguarding our assets.Main Responsibilities:Develop and maintain a security...
