Cybersecurity Compliance Analyst

1 settimana fa

Milano, Italia Docebo A tempo pieno

Hey you \uD83D\uDC4B Want to work for one of the fastest growing SaaS companies in the world? \uD83D\uDCC8

We’re building the next generation of learning software that companies like AWS, Netflix, Opentable and L’Oreal rely on to deliver training \uD83D\uDCBB We believe learning is for everyone, and that we all have something we can learn from each other. We rely on one another to continuously innovate our products and processes to create an exceptional experience for our employees, customers and partners.

Still not sure? We are a culture where values are at the center of everything we do. We also embody what we call the **Docebo Heart**. We trust our teammates, assume the best of one another, and also hold space for all the differences that make us better. \uD83D\uDC99

Are you ready to be a part of the learning revolution? \uD83D\uDE80

**About This Opportunity**:
The **Compliance Analyst** will collaborate with internal departments and external parties to strengthen Docebo's Compliance and Security initiatives. This role encompasses a wide range of frameworks relevant to Docebo products, including NIST, GDPR, PCI, ISO, SOC, SOX, CFR21, and FedRAMP.

**Reports to**: Business Enablement Manager - Security

**Location**:Biassono (hybrid)

**Responsibilities**:

- Respond to customer security requests, review RFI/RFQ, and properly compile responses related to Docebo's Compliance and Security posture.
- Respond to customer Compliance and Security questionnaires and identify outstanding customer requirements that need to be internally addressed with Corrective Action Plans (CAPs).
- Drive customer Compliance and Security annual audits.
- Support the Docebo legal team in reviewing Customer Agreements and Terms and Conditions, Data Processing Addendum, and any Compliance and Security documents, mapping customer requirements to Docebo standard processes.
- Prepare draft reports and other management reporting deliverables;
- Organize the internal Compliance and Security documentation and tools to keep them up to date and publish them on the Docebo “trust page”.
- Conducts additional information gathering as needed to identify compliance risks.
- Provide support to the GRC team (Governance, Risk, and Compliance) during SOC2, ISO27001, and FedRAMP audits to ensure that the organization is audit-ready.
- Other duties related to Compliance and Security as may be assigned or requested.

**Requirements**:

- Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills.
- Significant working experience supporting audits and compliance & security activities for SaaS companies.
- Working knowledge of information security principles, trends, and best practices, including AWS environment and services.
- Knowledge of GDPR requirements and other data privacy laws (CCPA, PIPL, etc.).
- Understanding of compliance and security management principles.
- Continuous learning mindset, passion for the intersection of technology and business.

**Preferred Requirements**:

- Bachelor's degree in computer science, information security, auditing, law, or similar.
- Basic legal knowledge and principles related to any applicable privacy laws worldwide (GDPR, CCPA, etc.)
- Certified Information Systems Auditor (CISA)
- IAPP CIPP or CIPT
- CompTIA Security+
- FedRamp framework knowledge
- Proficient in tools such as Drata, RFP.io, Loopio, and similar.

LI-Hybrid

**Benefits & Perks** \uD83D\uDE0D
- Generous Vacation Policy, plus 2 extra floating holidays to use for religious or cultural events that matter to you
- Employee Share Purchase Plan
- Career progression/internal mobility opportunities
- Four employee resource groups to get involved with (the Docebo Women's Alliance, PRIDE, BIDOC, and Green Ambassadors)
- WeWork partnership and “Work from Anywhere” program

**Hybrid Office Model \uD83C\uDFE2**

**About Docebo** \uD83D\uDC99

Here at Docebo, we power learning experiences for over 3000 customers around the world with our easy-to-use, AI-powered Suite designed to close the enterprise learning loop. We have successfully achieved 2 IPOs (TSX: DCBO & NASDAQ: DCBO), been recognized as a Top SaaS e-learning Solution, and are growing exponentially in the process.

  • Cybersecurity Analyst

    3 settimane fa

    Milano, Italia Yoroi A tempo pieno

    **Yoroi** è leader nella sicurezza informatica che fornisce soluzioni contro lo spionaggio industriale, minacce interne e attacchi mirati avanzati. Yoroi fa parte di Tinexta, Gruppo Leader e in forte espansione quotato sul segmento STAR di Borsa Italiana. Tramite le sue controllate, Tinexta opera in tre aree di business: Digital Trust, Cyber Security e...

  • Cybersecurity Analyst

    2 mesi fa

    Milano, Italia Yoroi A tempo pieno

    **Yoroi** è leader nella sicurezza informatica che fornisce soluzioni contro lo spionaggio industriale, minacce interne e attacchi mirati avanzati. Yoroi fa parte di Tinexta, Gruppo Leader e in forte espansione quotato sul segmento STAR di Borsa Italiana. Tramite le sue controllate, Tinexta opera in tre aree di business: Digital Trust, Cyber Security e...

  • Compliance Analyst

    2 mesi fa

    Milano, Italia Webuild A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. - Consolidated Financial Results at June 30, 2023 **Webuild **is looking for a **Compliance Analyst** to...

  • Compliance Analyst

    10 ore fa

    Milano, Italia Webuild A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. - Consolidated Financial Results at June 30, 2023 **Webuild **is looking for a **Compliance Analyst** to...

  • Cybersecurity strategy

    1 settimana fa

    Milano, Lombardia, Italia Michael Page International A tempo pieno

    Cybersecurity strategy & governance - Milano e provincia Categoria: Business ServicesLuogo di lavoro: Milano e provinciaPer conto di un'importante societa' di consulenza ICT siamo alla ricerca di un/a Senior Consultant da inserire nella BU di Cybersecurity, con competenze Governance, Risk e compliance.Attivita' di assessment in ambito Cybersecurity (ISO...

  • Cybersecurity strategy

    1 settimana fa

    Milano, Lombardia, Italia Michael Page International A tempo pieno

    Cybersecurity strategy & governance Categoria: Business ServicesLuogo di lavoro: Milano e provinciaPer conto di un'importante società di consulenza ICT siamo alla ricerca di un/a Senior Consultant da inserire nella BU di Cybersecurity, con competenze Governance, Risk e compliance.Attività di assessment in ambito Cybersecurity (ISO 27001, NIS, etc) e...

  • Compliance Analyst

    1 settimana fa

    Milano, Lombardia, Italia Webuild A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. Consolidated Financial Results at June 30, 2023Webuild is looking for a Compliance Analyst to join the...

  • Cybersecurity Analyst

    1 settimana fa

    Milano, Lombardia, Italia LGA HUMAN RESOURCES A tempo pieno

    LGA Human Resources supports clients in the Search & Selection of Middle and Senior management profiles.We are a team of entrepreneurial minded people, working in a fast-paced environment with a client centric and service-oriented approach.We address needs throughout the talent journey, helping organizations develop their capabilities and individuals build a...

  • Compliance Analyst

    2 mesi fa

    Milano, Italia Webuild S.p.A. A tempo pieno

    Webuild, nuovo nome di Salini Impregilo, è un player globale delle costruzioni specializzato nella realizzazione di grandi opere e infrastrutture complesse per la mobilità sostenibile, l’energia idroelettrica, l’acqua, i green buildings, il tunneling.   Espressione di 117 anni di esperienza ingegneristica applicata in 50 paesi dei cinque...

  • Compliance Analyst

    3 settimane fa

    Milano, Italia Webuild S.p.A. A tempo pieno

    Webuild, nuovo nome di Salini Impregilo, è un player globale delle costruzioni specializzato nella realizzazione di grandi opere e infrastrutture complesse per la mobilità sostenibile, l’energia idroelettrica, l’acqua, i green buildings, il tunneling.   Espressione di 117 anni di esperienza ingegneristica applicata in 50 paesi dei cinque...

  • Compliance Analyst

    4 settimane fa

    Milano, Italia Webuild A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors.Webuild is the expression of 117 years of applied engineering experience in 50 countries, in five continents,...

  • Compliance Analyst

    3 settimane fa

    Milano, Italia Webuild A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors.Webuild is the expression of 117 years of applied engineering experience in 50 countries, in five continents,...

  • Compliance Analyst

    1 mese fa

    Milano, Lombardia, Italia Webuild S.p.A. A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. Webuild is the expression of 117 years of applied engineering experience in 50 countries, in five...

  • Compliance Analyst

    1 settimana fa

    Milano, Lombardia, Italia Webuild S.p.A. A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. Webuild is the expression of 117 years of applied engineering experience in 50 countries, in five...

  • Compliance Analyst

    3 settimane fa

    Milano, Lombardia, Italia Webuild S.p.A. A tempo pieno

    Webuild is the new name of the Salini Impregilo Group, the global construction player specialized in building large works and complex infrastructure for the sustainable mobility, hydroelectric energy, water, green buildings and the tunnelling sectors. Webuild is the expression of 117 years of applied engineering experience in 50 countries, in five...

  • Compliance Analyst

    1 settimana fa

    Milano, Lombardia, Italia CLA Consulting A tempo pieno

    Compliance Analyst (0-1 anno di esperienza)**Deloitte Audit & Assurance - Compliance Analyst (0-1 anno di esperienza)*******Sei pronto a **#MakeAnImpactThatMatters **nel** **nostro team**?*****Entrando nel Team di Deloitte **Audit & Assurance** avrai l'occasione di crescere e sviluppare forti competenze trasversali, lavorando su progetti sfidanti a stretto...

  • Compliance Analyst

    3 settimane fa

    Milano, Italia Hunters Group A tempo pieno

    Realtà che ricopre una posizione rilevante nel mercato italiano della distribuzione di prodotti di credito e assicurativi - Principali responsabilitàil Compliance Analyst svolgerà la propria attività con la supervisione del Responsabile di Funzione, e si occuperà di: - Definire le procedure relative ai principali processi aziendali; - Aggiornare...

  • Cybersecurity Analyst

    1 settimana fa

    Milano, Lombardia, Italia Tinexta S.p.A. A tempo pieno

    Yoroi, società del Gruppo Tinexta, leader nella sicurezza informatica che fornisce soluzioni contro lo spionaggio industriale, minacce interne e attacchi mirati avanzati, ricerca una risorsa da inserire nella sede di Milano nel ruolo di Cyber Security Analyst.Tinexta, Gruppo dinamico e in forte espansione, quotato sul segmento STAR di Borsa Italiana, è...

  • Cybersecurity Analyst

    2 mesi fa

    Milano, Italia LGA HUMAN RESOURCES A tempo pieno

    **LGA Human Resources** supports clients in the Search & Selection of Middle and Senior management profiles. We are a team of entrepreneurial minded people, working in a fast-paced environment with a client centric and service-oriented approach. We address needs throughout the talent journey, helping organizations develop their capabilities and individuals...

  • Junior Compliance Analyst

    3 settimane fa

    Milano, Italia Umana spa A tempo pieno

    Umana S.p.A. cerca JUNIOR COMPLIANCE ANALYST per un’importante azienda del territorio. Ti occuperai di monitorare e garantire la conformità delle attività aziendali alle normative vigenti. Sarai responsabile dell'analisi e del controllo dei processi interni, della gestione dei rischi e della redazione di report periodici. Collaborerai con i vari...