Security Compliance Specialist

4 settimane fa

Milano, Lombardia, Italia Docebo A tempo pieno

About This Opportunity:

The Docebo Security Compliance Analyst II plays a critical role in demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams to improve the Company's Cybersecurity posture, enhance customer experience, and unlock business value.

This role involves ensuring Docebo adheres to regulatory frameworks and maintains robust security measures, collaborating with internal teams and external stakeholders to effectively address compliance and security requirements, safeguarding the company's operations and reputation.

The Security Compliance Analyst also provides training and guidance to internal teams on compliance requirements and security protocols, continuously improving efforts and updating on emerging compliance regulations, security threats, and industry best practices.

Responsibilities:

  1. Customer Engagement and Response: respond to customers' security and privacy-related inquiries, compile comprehensive responses (mainly RFI, RFP, and RFQ), and address compliance questionnaires, ensuring timely and accurate information dissemination and actively supporting the sales process.
  2. Customer Audit Support and Documentation: coordinate Docebo's activities related to customer compliance audits, assist with agreement and term reviews, and prepare management reports on compliance and security initiatives in collaboration with the GRC team.
  3. Support Internal Compliance Management: maintain internal compliance documentation, and coordinate the conduction of risk assessments and internal company audits to ensure organizational readiness in collecting the needed evidence.
  4. Vendor Risk Assessment and Monitoring: support the evaluation of company third-party vendor-associated risks, monitor security controls, and maintain risk management reporting dashboards to mitigate risk and effectively qualify company suppliers; in collaboration with the GRC team.
  5. Security Awareness: develop and coordinate the implementation of security & privacy awareness programs to promote a culture of security consciousness; in collaboration with the GRC team.
  6. Cross-functional collaboration: collaborate across the company departments to align compliance, security, and privacy efforts with business objectives; consult the company's departments to assess changes and compliance obligations and support updating company compliance programs and controls.
  7. Documentation and Reporting: maintain comprehensive documentation of compliance activities, including policies, procedures, and audit findings, and prepare reports for management and regulatory authorities; in collaboration with the GRC team.
  8. Trust Page management: support the definition of content, and keep it updated.

Requirements:

  • Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills.
  • 4+ years of relevant work experience.
  • Working experience supporting audits and compliance & security activities for SaaS companies.
  • Working knowledge of information security principles, trends, and best practices, specifically cloud environments and services (eg: AWS, Azure, GCloud).
  • Knowledge of GDPR requirements and other data privacy laws (eg: CCPA, PIPL).
  • Knowledge of ISO/IEC 27001, ISO/IEC 27017, ISO/IEC 27018, ISO/IEC 27701, ISO 9001, and AICPA/ISAE 3000 SOC 2 & PCI.
  • Knowledge of CFR21 Part 11.

Nice to have:

  • Bachelor's degree in computer science, information security, auditing, law, or similar.
  • Certified Information Systems Auditor (CISA).
  • Certified Information Privacy Professional (CIPP, IAPP or CIPT).
  • CompTIA Security+.
  • Proficiency in tools such as Drata, , and similar.
  • Working experience implementing, evaluating, and assessing cybersecurity and compliance standards for the National Institute of Standards and Technology (NIST) or FedRAMP to further the assessment and secure operation of the FedRAMP cloud-based systems.

About Docebo:

Docebo is a global company with offices in North America, EMEA, APAC and more. Our people believe in six core values, simply defined and manifested in everything we do - Innovation, Simplicity, Accountability, Togetherness, Curiosity, and Impact.

If this sounds like you, now is your time to join one of the fastest-growing learning technology companies on the market.

  • Compliance Specialist

    3 settimane fa

    Milano, Lombardia, Italia Compliance A tempo pieno

    Ruolo: Stiamo cercando un Compliance Specialist per unirsi al nostro team di Compliance. Ricoprendo questo ruolo avrai la possibilità di essere coinvolto con livelli di responsabilità crescenti nello svolgimento delle attività di consulenza operativa alle strutture nonché nello svolgimento di verifiche di conformità sui processi e sui documenti prodotti...

  • Specialista Giunior

    1 mese fa

    Milano, Lombardia, Italia Compliance A tempo pieno

    Stiamo cercando un Specialista Giunior per il nostro team di Compliance. Il candidato ideale avrà background giuridico o finanziario e 1/2 anni di esperienza in ambito compliance maturati all'interno di istituti di credito/società di consulenza o in studi legali attivi nel diritto bancario.Le principali responsabilità del ruolo includono:Analizzare la...

  • IT Security Governance Specialist

    4 settimane fa

    Milano, Lombardia, Italia Techyon A tempo pieno

    Techyon is a leading headhunter in the search and selection of senior IT professionals, including an IT Security Specialist.As an Information Technology Security Specialist, you will play a key role in ensuring the security of both global and local solutions by monitoring the correct and effective application of IT security policies, standards, and...

  • Information Security Governance Specialist

    4 settimane fa

    Milano, Lombardia, Italia Techyon S.R.L. A tempo pieno

    Techyon S.R.L., a leading head hunter in the IT segment, is seeking a highly skilled Information Security Governance Specialist to join its team.The successful candidate will be responsible for ensuring the adequate level of security for both global and local solutions by monitoring the correct and effective application of Nestlé IT security Policies,...

  • Governance, Risk Compliance Specialist

    1 mese fa

    Milano, Lombardia, Italia Bip - Business Integration Partners A tempo pieno

    Descrizione del LavoroLa nostra azienda, Bip - Business Integration Partners, è alla ricerca di un Governance, Risk Compliance Specialist per unirsi al nostro team di esperti nel settore della cybersecurity. Il candidato ideale sarà un professionista con esperienza nella gestione dei rischi e nella compliance, che sia in grado di lavorare in un ambiente...

  • Cyber Security Specialist

    1 mese fa

    Milano, Lombardia, Italia TECHEDGE S.P.A. A tempo pieno

    About the RoleWe are seeking a highly skilled Cyber Security Specialist to join our Information System & Information Technology team. As a key member of our team, you will be responsible for managing and coordinating the group's security-related activities, focusing on operational and specific tasks.Key ResponsibilitiesManage and coordinate the group's...

  • Cybersecurity Specialist for Governance and Compliance

    3 settimane fa

    Milano, Lombardia, Italia Nippon Gases A tempo pieno

    Job DescriptionNippon Gases seeks a motivated and detail-oriented Cybersecurity Specialist for Governance and Compliance to join our team.Key ResponsibilitiesDevelop, enhance, and operationalize enterprise-level security, risk policies, processes, and controls to mitigate risk and comply with applicable laws and regulations.Assess the potential impact of...

  • Senior Software Security Specialist – Italy

    1 mese fa

    Milano, Lombardia, Italia Minded Security A tempo pieno

    Software Security Trainer – ItalyContesto:IMQ Minded Security è una società con 15 anni di esperienza nel fornire soluzioni di sicurezza software alle aziende. La nostra azienda è divisa in 4 aree: Consulting, Testing, Training e Software Security Technologies. Abbiamo una combinazione delle ultime ricerche sulla sicurezza del software con le tecniche...

  • Cloud Security Specialist

    1 mese fa

    Milano, Lombardia, Italia Cleafy A tempo pieno

    Cleafy is a SaaS company that specializes in fraud detection and cybersecurity. We're looking for a highly skilled Cloud Security Specialist to join our Security & Compliance team. The ideal candidate will have a strong technical background in cloud security technology and experience with Google Cloud Platform (GCP).Responsibilities: Implement, maintain, and...

  • Junior Risk

    4 settimane fa

    Milano, Lombardia, Italia Nestle Operational Services Worldwide Sa A tempo pieno

    Position Snapshot: Global IT Hub of Nestlé in Italy, Milan Headquarters (Assago) IT Platforms Risk & Compliance team, reporting to the IS/IT Risk & Compliance Manager.Nestlé welcomes people with disabilities.Job Summary: We are seeking a Risk and Compliance professional to join our IT Platforms team in Milan, Italy as a Junior Risk and Compliance...

  • Compliance Specialist

    1 mese fa

    Milano, Lombardia, Italia Blank A tempo pieno

    About BlankBlank is a fintech company that provides a professional bank account and administrative tools for self-employed professionals. We are looking for a Compliance Specialist to join our team and help us ensure that our operations are in line with regulatory requirements.As a Compliance Specialist, you will be responsible for conducting regular risk...

  • Specialista di Compliance

    3 settimane fa

    Milano, Lombardia, Italia Page Personnel A tempo pieno

    Descrizione del ruolo:La risorsa si occuperà di attività di:Definizione delle procedure da portare avanti per contrastare i rischi di complianceSviluppo, gestione e possibile implementazione del programma di conformitàCoordinamento delle attività aziendali con la normativa vigentePianificazione e supervisione dei programmi per la gestione del rischio...

  • Security Specialist

    4 settimane fa

    Milano, Lombardia, Italia Bureau Veritas Group A tempo pieno

    About the RoleBureau Veritas Group is a global leader in verification, assessment, and risk analysis in Quality, Environment, Health, and Safety, and Social Accountability (QHSE-SA). The Group provides inspection and control, compliance verification, and certification services to support organizations of all sizes, belonging to all sectors, both public and...

  • Specialista di Compliance

    1 mese fa

    Milano, Lombardia, Italia Randstad A tempo pieno

    Randstad Italia Spa - Divisione Talent Selection Specialist Opportunità - Filiale di Milano specializzata nella ricerca e selezione dei migliori professionisti del mercato appartenenti alle Categorie Protette ai sensi della L. 68/99, ricerca per prestigioso gruppo del settore Assicurativo, un Specialista di Compliance.L'azienda offre contratto a tempo...

  • Specialista di Compliance

    3 settimane fa

    Milano, Lombardia, Italia Randstad A tempo pieno

    Randstad Italia Spa – Divisione Talent Selection Specialist Opportunità – Filiale di Milano specializzata nella ricerca e selezione dei migliori professionisti del mercato appartenenti alle Categorie Protette ai sensi della Lg. 68/99, ricerca per prestigioso gruppo del settore Assicurativo, un Specialista di Compliance.Caratteristiche della...

  • Specialista di Compliance di Stage

    1 mese fa

    Milano, Lombardia, Italia Cesar Spa A tempo pieno

    Acqua & Sapone è una delle principali catene di bellezza e igiene in Italia, con una rete di oltre 800 negozi in tutto il paese. La società è in continua crescita e innovazione, offrendo una vasta gamma di prodotti e servizi in un ambiente moderno e accogliente.Compiti e responsabilitàIl Stage di Compliance Specialist sarà responsabile del supporto...

  • Cloud Security Specialist

    4 settimane fa

    Milano, Lombardia, Italia Project J Ltd A tempo pieno

    Job Description:We are seeking a highly skilled Cloud Security Specialist to join our Security Compliance Team.The ideal candidate will possess a strong technical background, particularly in cloud security technology, and have experience with cloud providers, specifically Google Cloud Platform (GCP).Responsibilities include:Implementing, maintaining, and...

  • Cybersecurity Specialist

    3 settimane fa

    Milano, Lombardia, Italia Nippon Gases A tempo pieno

    About the RoleNippon Gases seeks a highly skilled Cybersecurity Specialist - Governance and Compliance to join our Information Security Department. Main ResponsibilitiesDevelop and enhance enterprise-level security, risk policies, processes, and controls to mitigate risk and comply with applicable laws and regulations. Assess the potential impact of...

  • Cloud Security Specialist

    4 settimane fa

    Milano, Lombardia, Italia Cleafy A tempo pieno

    Cleafy is a SaaS company that specializes in fraud detection and cybersecurity solutions. We are seeking a highly skilled Cloud Security Specialist to join our Security & Compliance team.The ideal candidate will have a strong technical background in cloud security technology and experience with Google Cloud Platform (GCP). Responsibilities include...

  • Cyber Security Expert

    4 settimane fa

    Milano, Lombardia, Italia FinecoBank S.p.A. A tempo pieno

    Job OverviewFinecoBank S.p.A. is seeking an experienced Cyber Security Specialist to join its team. The ideal candidate will have a strong background in network security, enterprise systems security, and data security.Key ResponsibilitiesSupport FinecoBank in all Cyber Security operations, covering enterprise and cloud security across the...