IT Risk & Compliance Analyst
AngiSalary not specified
Full Time
Mid-level (3 to 4 years)
Not SpecifiedCompensation
Mid-level (3 to 4 years)Experience Level
Full TimeJob Type
UnknownVisa
Technology, Compliance, CybersecurityIndustries
Requirements
- 3-4 years of experience as a lead IT Auditor with competencies in audit methodology, planning, scoping, testing, and reporting IT audits
- Risk and control identification and analysis
- Clear understanding of IT audit methodologies
- Able to independently manage and complete audit tasks and/or compliance projects from beginning to end
- Experience with security/technical controls including SOC 1 Type 2, SOC 2 Type 2, ISO27001, ISO 27017, ISO 27018, ISO 27701, C5 or similar compliance frameworks
- General knowledge of IT systems, DevOps, security, AWS/Azure/GCP, GRC tools
- Well-versed in compliance guidelines and best practices
- Strong attention to detail with an analytical mind and outstanding problem-solving skills
- Ability to maintain confidentiality
- Ability to build strong relationships across cross-functional teams
- Strong technical writing and research skills
- Excellent communication, coordination, and negotiation skills
- Good to have: Familiarity with tools such as JIRA, SNOW, Salesforce
Responsibilities
- Test internal controls to verify their design and effectiveness, often in relation to specific requirements such as SOC, ISO, C5, internal policies, etc
- Identify and assess potential security risks, vulnerabilities, and control gaps within the technical environment
- Organize and facilitate the audit process, ensuring it runs smoothly and efficiently, including coordinating with internal teams and possible other compliance partners
- Schedule, plan, and conduct audits under minimal guidance from the Compliance Manager
- Maintain and organize audit evidence
- Monitor and ensure the implementation of recommended actions to address identified issues/findings, risks, and improvements
- Stay updated on evolving IT trends and audit practices to provide expert advice
- Monitor controls which had gaps/issues/need improvements
- Offer insights and suggestions for improving business processes, policies, and procedures
- Provide training to different teams on audit protocols
- Explain what controls mean and what evidence is needed to stakeholders
- Manage internal audits conducted by the Compliance team
- Facilitate external audits
- Track audit-related activities and metrics
- Communicate audit results to management
- Other relevant duties as assigned
Skills
IT Auditing
Internal Controls
SOC
ISO
C5
Risk Assessment
Audit Coordination
Audit Evidence Management
Compliance Reporting
Control Monitoring
Stakeholder Training
SailPoint
Provides identity security solutions for enterprises
About SailPoint
SailPoint provides identity security solutions that help organizations manage and protect digital identities. Its main products, including IdentityIQ, IdentityNow, and File Access Manager, assist businesses in ensuring compliance with regulations, reducing risks, and controlling access to sensitive information. These products work by giving organizations visibility into who has access to what data, allowing them to manage permissions effectively. SailPoint stands out from competitors by utilizing advanced technologies like artificial intelligence and machine learning to enhance its identity governance capabilities. The company's goal is to be a trusted partner for enterprises in navigating the complexities of identity security, ensuring that they can securely manage access to their critical information.
Austin, TexasHeadquarters
2004Year Founded
$20.7MTotal Funding
IPOCompany Stage
Cybersecurity, AI & Machine LearningIndustries
1,001-5,000Employees
Risks
Emerging identity management startups increase competition, potentially eroding market share.
Rapid technological changes may outpace SailPoint's innovation, risking solution obsolescence.
Integration challenges with acquisitions like SecZetta may disrupt services or misalign strategies.
Differentiation
SailPoint specializes in managing and securing digital identities for enterprises.
The company leverages AI and machine learning to enhance identity security solutions.
SailPoint's IdentityIQ provides visibility and control over user access.
Upsides
Growing demand for remote work security boosts SailPoint's remote access management features.
Rising adoption of AI-driven identity analytics aligns with SailPoint's AI capabilities.
Increased regulatory requirements drive demand for SailPoint's identity governance solutions.
Related Jobs
RemoteRemoteManager - IT Audit
Western DigitalSalary not specified
- Full Time
- Mid-level (3 to 4 years), Senior (5 to 8 years)
RemoteSenior Compliance Specialist
WiskSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSr. Audit Manager
M&T BankSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSr. Information Security Analyst
ValonSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior IT Specialist
Spry MethodsSalary not specified
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteSenior Risk Analyst - Enterprise Risk Management
DeelSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteQuality Assurance Specialist
OkloSalary not specified
- Full Time
- Junior (1 to 2 years)