Information Security Analyst

Description du poste:

We're (COMPANY NAME), the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join us.
The Team:
Our Global information security organization is responsible for security and trust. We manage security and compliance for (COMPANY NAME). We continuously govern the security program of (COMPANY NAME) and maintain security certifications required by our customers. The Information Security Trust team is looking for a new member in our Governance and Compliance team.
The Role:
(COMPANY NAME) is looking for talented GRC security analyst to join our Information Security Trust Org. You will collaborate with different departments to ensure compliance with regulations and industry standards. In order to be successful you will need to have strong communication, research skills, and attention to detail. In this role, you will have the opportunity to significantly contribute in maintaining a secure and compliant environment at (COMPANY NAME), safeguarding against risks and ensuring adherence to legal and industry standards.
The work you'll do:
* As GRC Information Security Analyst, you will support the planning and execution of our global information security and IT compliance initiatives and audits.
* Using your analytical skills, you will assist with monitoring of security measures performance and recommend security enhancements.
* You will support planning and successful implementation, documentation and scaling of our ongoing information security and compliance efforts.
* You will work with involved departments like Product & Engineering, IT, Procurement, Legal and HR and will assist in adjusting existing and creating new relevant processes to align company objectives with information security and compliance needs.
* In preparation for external audits, you will support monitoring, evidence collection, gap assessments and reviews as needed.
The qualifications you need:
* 2+ years of working experience in a related role.
* Proficient in information security fundamentals, including network security, encryption, and access controls.
* General understanding of common security standards and regulations (e.g. SOC2, ISO2700x, VDA TISAX, HIPAA, etc.).
* Ability to develop and maintain basic GRC documentation, such as policy and procedure documents or project plans.
* Assist in conducting risk assessments or audits, including documenting results
* Able to review some types of evidence and determine operating effectiveness of controls.
* Experience using GRC tools and platforms (this is a plus, but not necessary).
* Basic understanding of Cloud Environments and Software as a Service offerings.
* Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
* Fluent and comfortable in working in English language. German language knowledge is a plus.

What (COMPANY NAME) can offer you:
* The unique opportunity to work with industry-leading process mining technology
* Investment in your personal growth and skill development (clear career paths, internal mobility opportunities, L&D platform, mentorships, and more)
* Great compensation and benefits packages (equity (restricted stock units), life insurance, time off, generous leave for new parents from day one, and more)
* Physical and mental well-being support (subsidized gym membership, access to counseling, virtual events on well-being topics, and more)
* A global and growing team of Celonauts from diverse backgrounds to learn from and work with
* An open-minded culture with innovative, autonomous teams
* Business Resource Groups to help you feel connected, valued and seen (Black@(COMPANY NAME), Women@(COMPANY NAME), Parents@(COMPANY NAME), Pride@(COMPANY NAME), Resilience@(COMPANY NAME), and more)
* A clear set of company values that guide everything we do: Live for Customer Value, The Best Team Wins, We Own It, and Earth Is Our Future
About Us
Since 2011, (COMPANY NAME) has helped thousands of the world's largest and most valued companies deliver immediate cash impact, radically improve customer experience and reduce carbon emissions. Its Process Intelligence platform uses industry-leading process mining technology and AI to present companies with a living digital twin of their end-to-end processes. For the first time, everyone in an organisation has a common language about how the business works, visibility into where value is hidden and the ability to capture it. (COMPANY NAME) is headquartered in Munich (Germany) and New York (USA) and has more than 20 offices worldwide.
Join us as we make processes work for people, companies and the planet.

(COMPANY NAME) is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. Different makes us better.
Accessibility and Candidate Notices