Cloud Security Analyst

2 mesi fa

Milano, Italia Buscojobs A tempo pieno

The role of Docebo's Security Compliance Analyst II is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value.
It is essential to ensure that Docebo adheres to regulatory frameworks and maintains robust security measures.
Collaborating with internal teams and external stakeholders, they effectively address compliance and security requirements, safeguarding the company's operations and reputation.
This role involves continuous improvement efforts and updating on emerging compliance regulations, security threats, and industry best practices.
The Security Compliance Analyst also provides training and guidance to internal teams on compliance requirements and security protocols.
Reports to: Business Enablement Manager - Security Responsibilities: Customer Engagement and Response: respond to customers' security and privacy-related inquiries, compile comprehensive responses (mainly RFI, RFP, and RFQ), and address compliance questionnaires, ensuring timely and accurate information dissemination and actively supporting the sales process.
Customer Audit Support and Documentation: Coordinate Docebo's activities related to customer compliance audits, assist with agreement and term reviews, and prepare management reports on compliance and security initiatives in collaboration with the GRC team.
Support Internal Compliance Management: maintain internal compliance documentation, and coordinate the conduction of risk assessments and internal company audits to ensure organizational readiness in collecting the needed evidence.
Vendor Risk Assessment and Monitoring: Support the evaluation of company third-party vendor-associated risks, monitor security controls, and maintain risk management reporting dashboards to mitigate risk and effectively qualify company suppliers; in collaboration with the GRC team.
Security Awareness: develop and coordinate the implementation of security & privacy awareness programs to promote a culture of security consciousness; in collaboration with the GRC team.
Cross-functional collaboration: collaborate across the company departments to align compliance, security, and privacy efforts with business objectives; consult the company's departments to assess changes and compliance obligations and support updating company compliance programs and controls.
Documentation and Reporting: Maintain comprehensive documentation of compliance activities, including policies, procedures, and audit findings, and prepare reports for management and regulatory authorities; in collaboration with the GRC team.
Trust Page management: support the definition of content, and keep it updated.
Gather information regarding clients' and prospects' requests related to the content of the Trust Page to offer expertise and feedback to other departments to ensure that the content is relevant and up to date with the latest standards.
Requirements: Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills.
4+ years of relevant work experience.
Working experience supporting audits and compliance & security activities for SaaS companies.
Working knowledge of information security principles, trends, and best practices, specifically cloud environments and services (eg: AWS, Azure, GCloud).
Knowledge of GDPR requirements and other data privacy laws (eg: CCPA, PIPL).
Knowledge of ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, ISO 9001, and AICPA/ISAE 3000 SOC 2 & PCI.
Knowledge of CFR21 Part 11.
Nice to have: Bachelor's degree in computer science, information security, auditing, law, or similar.
Certified Information Systems Auditor (CISA).
Certified Information Privacy Professional (CIPP, IAPP or CIPT).
CompTIA Security+.
Proficiency in tools such as Drata, RFP.io, and similar.
Working experience implementing, evaluating, and assessing cybersecurity and compliance standards for the National Institute of Standards and Technology (NIST) or FedRAMP to further the assessment and secure operation of the FedRAMP cloud-based systems.
#J-18808-Ljbffr

  • Cloud Security Engineer

    2 mesi fa

    Milano, Italia Coreview A tempo pieno

    Milan, Metropolitan City of Milan, ItalyCoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365.CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole M365...

  • Cloud Security Engineer

    3 mesi fa

    Milano, Italia Coreview A tempo pieno

    Milan, Metropolitan City of Milan, ItalyCoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365.CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole M365...

  • Cloud Security Engineer

    3 mesi fa

    Milano, Italia Coreview A tempo pieno

    Milan, Metropolitan City of Milan, ItalyCoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365.CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole M365...

  • Cloud Security Engineer

    1 mese fa

    Milano, Italia Coreview A tempo pieno

    Milan, Metropolitan City of Milan, Italy CoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365. CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole M365...

  • Cloud Security Engineer

    2 mesi fa

    Milano, Italia Coreview A tempo pieno

    Milan, Metropolitan City of Milan, Italy CoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365. CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole M365...

  • Cloud Security Engineer

    2 mesi fa

    Milano, Italia CoreView A tempo pieno

    Milan, Metropolitan City of Milan, Italy CoreView delivers a unified approach to delegated administration and automated governance to help organizations of every size achieve more with Microsoft 365. CoreView is the Global Leader in Effortless M365 Security, Governance, and Administration, offering an end-to-end solution that stretches across the whole...

  • Cloud Security Analyst

    1 mese fa

    Milano, Italia Docebo A tempo pieno

    About This Opportunity: The role of Docebo's Security Compliance Analyst II is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value. It is essential to...

  • Cloud Security Analyst

    2 mesi fa

    Milano, Italia Docebo A tempo pieno

    About This Opportunity: The role of Docebo’s Security Compliance Analyst II is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value. It is...

  • Cloud Security Architect

    9 mesi fa

    Milano, Italia Oliver James Associates A tempo pieno

    Cloud Security Architect Our client, a leading company in the Insurance industry, is currently seeking a talented Cloud Security Architect to join their Security Team. Role & Responsibilities: - Develop and implement cloud security strategies and solutions - Monitor and assess security vulnerabilities in cloud environments - Ensure compliance with...

  • Cloud Security Architect

    2 settimane fa

    Milano, Italia Oliver James Associates A tempo pieno

    Cloud Security ArchitectOur client, a leading company in the Insurance industry, is currently seeking a talented Cloud Security Architect to join their Security Team.Role & Responsibilities:- Develop and implement cloud security strategies and solutions- Monitor and assess security vulnerabilities in cloud environments- Ensure compliance with industry...

  • Cloud Security Engineer

    1 settimana fa

    Milano, Italia Luna Labs Srl A tempo pieno

    Stiamo ricercando dei profili esperti Cloud Security Engineer. Le attività prevedono: Valutazione del rischio di sistemi/architetture software. Valutazione della conformità di un sistema software alle principali best practices relative alla Cyber Security, in particolare in ambito Cloud Computing. Utilizzo degli strumenti per la gestione di Identity and...

  • Cloud Security Specialist

    2 ore fa

    Milano, Lombardia, Italia Coreview A tempo pieno

    Job OverviewCoreView is a global leader in effortless M365 security, governance, and administration. We strive to create a diverse and inclusive global workplace where every voice is valued.ResponsibilitiesDesign and maintain secure cloud services, ensuring robust security measures from design to implementation.Enhance and sustain robust security solutions...

  • Cloud Security Engineer

    7 giorni fa

    Milano, Italia Luna Labs Srl A tempo pieno

    Stiamo ricercando dei profili esperti Cloud Security Engineer.Le attività prevedono:Valutazione del rischio di sistemi/architetture software.Valutazione della conformità di un sistema software alle principali best practices relative alla Cyber Security, in particolare in ambito Cloud Computing.Utilizzo degli strumenti per la gestione di Identity and Access...

  • Cloud Security Engineer

    7 giorni fa

    Milano, Italia Luna Labs Srl A tempo pieno

    Stiamo ricercando dei profili esperti Cloud Security Engineer.Le attività prevedono: Valutazione del rischio di sistemi/architetture software.Valutazione della conformità di un sistema software alle principali best practices relative alla Cyber Security, in particolare in ambito Cloud Computing.Utilizzo degli strumenti per la gestione di Identity and...

  • Cloud Security Engineer

    6 giorni fa

    Milano, Italia Luna Labs srl A tempo pieno

    Stiamo ricercando dei profili esperti Cloud Security Engineer. Le attività prevedono: Valutazione del rischio di sistemi/architetture software. Valutazione della conformità di un sistema software alle principali best practices relative alla Cyber Security, in particolare in ambito Cloud Computing. Utilizzo degli strumenti per la gestione di Identity...

  • Cyber Security Cloud Specialist

    8 mesi fa

    Milano, Italia AXA A tempo pieno

    AXA's Cyber Security team is looking for a **Cyber Security Cloud specialist** with expertise in Cloud Security domain, who will be responsible to support the design, implementation and evolution of cloud security solutions with particular focus to AWS cloud. In this position, you are a passionate and talented security expert with very deep understanding...

  • Cloud Security Compliance Analyst

    2 settimane fa

    Milano, Italia Docebo A tempo pieno

    Hey you!\uD83D\uDC4B Want to work for one of the fastest growing SaaS companies in the world?\uD83D\uDCC8We're building the next generation of learning software that companies like AWS, Netflix, Opentable and L'Oreal rely on to deliver training \uD83D\uDCBB We believe learning is for everyone, and that we all have something we can learn from each other.We...

  • Network Security/noc Analyst Junior

    3 settimane fa

    Milano, Italia Energent Spa A tempo pieno

    **Energent Spa**, società di Information&Technology del **Gruppo EIES**, cerca un **Network Security / NOC Analyst Junior**. Il profilo ideale è in possesso di un diploma e/o laurea in informatica o equivalenti, che abbia maturato esperienza mínima nell’ambito Networking. **Requisiti richiesti**: competenze di network security per: - gestione di...

  • Cloud Security Specialist

    2 settimane fa

    Milano, Italia Exprivia A tempo pieno

    **Descrizione azienda**: **Exprivia **è a capo di un gruppo internazionale specializzato in Information and Comunication Technology in grado di indirizzare i driver di cambiamento del business dei propri clienti grazie alle tecnologie digitali. Con un consolidato know-how e una lunga esperienza data dalla presenza costante sul mercato, il gruppo dispone di...

  • Cloud & Infra Security Consultant

    1 settimana fa

    Milano, Italia Avanade A tempo pieno

    I nostri clienti non hanno bisogno di maggiore sicurezza informatica, hanno bisogno di una migliore sicurezza informatica. È qui che entri in gioco tu! Lavorando con Avanade, azienda leader nel settore della consulenza informatica, puoi aiutare a proteggere alcune delle più grandi aziende del mondo e mantenere i loro beni al sicuro. Siamo alla ricerca di...