Cloud Security Analyst
1 mese fa
The role of Docebo's Security Compliance Analyst II is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value.
It is essential to ensure that Docebo adheres to regulatory frameworks and maintains robust security measures. Collaborating with internal teams and external stakeholders, they effectively address compliance and security requirements, safeguarding the company's operations and reputation. This role involves continuous improvement efforts and updating on emerging compliance regulations, security threats, and industry best practices. The Security Compliance Analyst also provides training and guidance to internal teams on compliance requirements and security protocols.
Reports to: Business Enablement Manager - Security
Responsibilities: Customer Engagement and Response: respond to customers' security and privacy-related inquiries, compile comprehensive responses (mainly RFI, RFP, and RFQ), and address compliance questionnaires, ensuring timely and accurate information dissemination and actively supporting the sales process.Customer Audit Support and Documentation: Coordinate Docebo's activities related to customer compliance audits, assist with agreement and term reviews, and prepare management reports on compliance and security initiatives in collaboration with the GRC team.Support Internal Compliance Management: maintain internal compliance documentation, and coordinate the conduction of risk assessments and internal company audits to ensure organizational readiness in collecting the needed evidence.Vendor Risk Assessment and Monitoring: Support the evaluation of company third-party vendor-associated risks, monitor security controls, and maintain risk management reporting dashboards to mitigate risk and effectively qualify company suppliers; in collaboration with the GRC team.Security Awareness: develop and coordinate the implementation of security & privacy awareness programs to promote a culture of security consciousness; in collaboration with the GRC team.Cross-functional collaboration: collaborate across the company departments to align compliance, security, and privacy efforts with business objectives; consult the company's departments to assess changes and compliance obligations and support updating company compliance programs and controls.Documentation and Reporting: Maintain comprehensive documentation of compliance activities, including policies, procedures, and audit findings, and prepare reports for management and regulatory authorities; in collaboration with the GRC team.Trust Page management: support the definition of content, and keep it updated. Gather information regarding clients' and prospects' requests related to the content of the Trust Page to offer expertise and feedback to other departments to ensure that the content is relevant and up to date with the latest standards.Requirements: Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills.4+ years of relevant work experience.Working experience supporting audits and compliance & security activities for SaaS companies.Working knowledge of information security principles, trends, and best practices, specifically cloud environments and services (eg: AWS, Azure, GCloud).Knowledge of GDPR requirements and other data privacy laws (eg: CCPA, PIPL).Knowledge of ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, ISO 9001, and AICPA/ISAE 3000 SOC 2 & PCI.Knowledge of CFR21 Part 11.Nice to have: Bachelor's degree in computer science, information security, auditing, law, or similar.Certified Information Systems Auditor (CISA).Certified Information Privacy Professional (CIPP, IAPP or CIPT).CompTIA Security+.Proficiency in tools such as Drata, RFP.io, and similar.Working experience implementing, evaluating, and assessing cybersecurity and compliance standards for the National Institute of Standards and Technology (NIST) or FedRAMP to further the assessment and secure operation of the FedRAMP cloud-based systems.
#J-18808-Ljbffr
-
Cloud Security
5 giorni fa
Bardi, Italia Nestle Operational Services Worldwide Sa A tempo pieno**Position Snapshot**- Location: Nestlé Global IT HUB Assago - Milano Italy- Full time permanent contract- Minimum of 3+ years of specific Cloud experience as specialist or expert with a strong interest in Security topics- Strong written and verbal communications skills in English and at all levels within the organization**Position Summary**In order to...
-
Security Analyst
1 mese fa
Bardi, Italia It Crowd Argentina A tempo pienoOnly available for residents of Costa Rica Job Title: Security Analyst Location: Costa Rica Hourly Rate: 19 USD per hour Qualifications: 0-3 years of relevant experience 100% Remote Job Description: Monitoring to ensure threats are identified and escalated across multiple business units. Acting as a senior analyst to monitor complex alerts and...
-
Security Analyst
3 settimane fa
Bardi, Italia It Crowd Argentina A tempo pienoOnly available for residents of Costa Rica Job Title: Security Analyst Location: Costa Rica Hourly Rate: 19 USD per hour Qualifications: 0-3 years of relevant experience 100% Remote Job Description: Monitoring to ensure threats are identified and escalated across multiple business units. Acting as a senior analyst to monitor complex alerts and...
-
Security Analyst
1 giorno fa
Bardi, Italia It Crowd Argentina A tempo pienoOnly available for residents of Costa Rica Job Title: Security Analyst Location: Costa Rica Hourly Rate: 19 USD per hour Qualifications: 0-3 years of relevant experience 100% Remote Job Description: Monitoring to ensure threats are identified and escalated across multiple business units, acting as a senior analyst to monitor complex alerts and...
-
Security Analyst
12 ore fa
Bardi, Italia It Crowd Argentina A tempo pienoOnly available for residents of Costa Rica Job Title: Security AnalystLocation: Costa RicaHourly Rate: 19 USD per hourQualifications: 0-3 years of relevant experience100% Remote Job Description: Monitoring to ensure threats are identified and escalated across multiple business units, acting as a senior analyst to monitor complex alerts and investigations,...
-
Security Analyst
2 mesi fa
Bardi, Italia It Crowd Argentina A tempo pienoOnly available for residents of Costa Rica Job Title: Security AnalystLocation: Costa RicaHourly Rate: 19 USD per hourQualifications: 0-3 years of relevant experience100% Remote Job Description: Monitoring to ensure threats are identified and escalated across multiple business units. Acting as a senior analyst to monitor complex alerts and investigations,...
-
It-Cloud-Security Analyst
1 giorno fa
Bardi, Italia Flughafen Düsseldorf Gmbh A tempo pienoHier ist Ihr Können gefragt:- Entwicklung und Implementierung von Sicherheitsrichtlinien für Cloud-Dienste und -Infrastrukturen (z.B.Azure, AWS, Google Cloud)- Überwachung der Cloud-Umgebung auf sicherheitsrelevante Ereignisse und Anomalien- Planung und Organisation von Schwachstellenanalysen und Penetrationstests in der Cloud-Infrastruktur sowie die...
-
It-Cloud-Security Analyst
1 mese fa
Bardi, Italia Flughafen Düsseldorf Gmbh A tempo pienoHier ist Ihr Können gefragt:Entwicklung und Implementierung von Sicherheitsrichtlinien für Cloud-Dienste und -Infrastrukturen (z.B. Azure, AWS, Google Cloud)Überwachung der Cloud-Umgebung auf sicherheitsrelevante Ereignisse und AnomalienPlanung und Organisation von Schwachstellenanalysen und Penetrationstests in der Cloud-Infrastruktur sowie die...
-
Senior Security Analyst
2 settimane fa
Bardi, Italia Buscojobs A tempo pienoImportante realtà dedicata al mondo delle energie rinnovabili cerca un Senior Security Analyst.Principali responsabilitàMonitorare e rilevare le minacce in tempo reale attraverso vari strumenti e sistemi di input (SIEM, IDS / IPS, Firewall, AV, ecc.) e gestire in autonomia le fasi di analisi e di risposta agli incidenti.Analisi delle fonti per creare...
-
Bardi, Italia Avangarde Consulting A tempo pienoAvangarde Consulting Group è un'azienda italiana che ha scelto di incentrare il proprio business sull'innovazione e su quelle nuove tecnologie che possano abilitarla, stringendo rapporti di partnership con aziende leader nel settore della consulenza ICT. Durante vent'anni di continue sperimentazioni, ha composto un team di risorse altamente qualificate,...
-
Security Compliance Specialist
1 settimana fa
Bardi, Italia Docebo A tempo pienoSecurity Compliance Specialist (Cloud & SaaS) Company: Docebo Docebo's learning platform is more than LMS. Drive engagement, productivity, and connections with your customers, partners, and employees. Hey you Want to work for one of the fastest growing SaaS companies in the world? We're building the next generation of learning software that companies like...
-
Network Security, Cyber Security
2 settimane fa
Bardi, Italia One4 S.R.L. A tempo pienoNETWORK SECURITY, CYBER SECURITY Vuoi entrare a far parte del team One4?Siamo alla ricerca di una nuova risorsa, da inserire all'interno del team di Cyber Security.Verrai inserito all'interno di progetti consulenziali su tematiche di: Security Strategy, Cyber Security Assessment, Cloud Security, IOT/IOT Security, Cyber Resilience.Condurrai audit di sicurezza...
-
It-Cloud-Security Analyst
3 settimane fa
Bardi, Italia Flughafen Düsseldorf Gmbh A tempo pienoHier ist Ihr Können gefragt: Entwicklung und Implementierung von Sicherheitsrichtlinien für Cloud-Dienste und -Infrastrukturen (z.B. Azure, AWS, Google Cloud) Überwachung der Cloud-Umgebung auf sicherheitsrelevante Ereignisse und Anomalien Planung und Organisation von Schwachstellenanalysen und Penetrationstests in der Cloud-Infrastruktur sowie die...
-
It-Cloud-Security Analyst
3 settimane fa
Bardi, Italia Flughafen Düsseldorf Gmbh A tempo pienoHier ist Ihr Können gefragt: Entwicklung und Implementierung von Sicherheitsrichtlinien für Cloud-Dienste und -Infrastrukturen (z.B. Azure, AWS, Google Cloud) Überwachung der Cloud-Umgebung auf sicherheitsrelevante Ereignisse und Anomalien Planung und Organisation von Schwachstellenanalysen und Penetrationstests in der Cloud-Infrastruktur sowie die...
-
Security Compliance Specialist
1 settimana fa
Bardi, Italia Docebo A tempo pienoSecurity Compliance Specialist (Cloud & SaaS) Company: Docebo Docebo's learning platform is more than LMS.Drive engagement, productivity, and connections with your customers, partners, and employees.Hey you!Want to work for one of the fastest growing SaaS companies in the world?We're building the next generation of learning software that companies like AWS,...
-
Security Compliance Specialist
1 giorno fa
Bardi, Italia Docebo A tempo pienoSecurity Compliance Specialist (Cloud & SaaS)Company: DoceboDocebo's learning platform is more than LMS.Drive engagement, productivity, and connections with your customers, partners, and employees.Hey you!Want to work for one of the fastest growing SaaS companies in the world?We're building the next generation of learning software that companies like AWS,...
-
Cloud Security and Compliance Specialist
1 mese fa
Bardi, Emilia-Romagna, Italia Docebo A tempo pienoAbout This Opportunity:The role is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value.Essential responsibilities include ensuring Docebo adheres to...
-
Security Policy Engineer
2 mesi fa
Bardi, Italia Mondoo A tempo pienoMondoo is creating a new way that helps companies keep their users and data safe from hackers around the world. We believe that a great user experience and visual design will help our users to love and enjoy our product and make it easier to take action against attackers. Your impact You will have a direct impact on the Mondoo Platform including our policy...
-
Solution Cloud Architect
2 mesi fa
Bardi, Italia Experis A tempo pienoCliente attivo in ambito telecomunicazioni Experis, brand di ManpowerGroup presente in 54 paesi, grazie ai servizi integrati di Consulenza IT&Technology, Resourcing di professionisti specializzati, sviluppo di Career & Skills con Experis Academy, è il technical partner ideale per ogni azienda che necessita di realizzare progetti in ambito Cyber Security,...
-
Tech Academy Ambito Cloud And Security
13 ore fa
Bardi, Italia Buscojobs IT C2 A tempo pienoSiamo alla ricerca di giovani professionisti con una forte passione per il mondo dell'Information Technology e che vogliano sviluppare competenze in ambito Cloud e Security per poi essere inseriti all'interno di una realt multinazionale che vanta una presenza nel panorama della consulenza internazionale da oltre 20 anni ( Milano).Dettagli sul...
