Senior Compliance Analyst
EarnestFull Time
Junior (1 to 2 years)
Candidates should possess 8+ years of experience in IT compliance, security, or risk management, with demonstrated experience in FedRAMP certification processes and requirements. Hands-on experience implementing or maintaining ISO 27001 compliance and strong knowledge of SOC 2 compliance frameworks and audit processes are required. Experience conducting vendor security assessments and risk analyses, a solid understanding of information security principles, controls, and best practices, strong project management skills, and exceptional communication skills are also necessary.
The Senior GRC Analyst will assist with FedRAMP certification efforts, including gap analysis, remediation planning, documentation, and coordination with assessors. They will maintain SOC 2 compliance through evidence collection, control testing, and audit coordination. Responsibilities also include establishing and managing a vendor risk assessment program, conducting risk analyses, leveraging automation for compliance processes, responding to customer security inquiries, developing and maintaining security policies, collaborating with cross-functional teams on compliance integration, reviewing contracts for security and compliance requirements with the legal team, and staying current with evolving compliance standards and regulatory requirements.
Automates workflows to enhance productivity
Tines offers a platform that helps businesses automate their workflows to improve productivity. The platform allows users to streamline routine tasks, reducing repetitive work, unnecessary notifications, and information silos. It is designed to be user-friendly and can easily fit into existing business processes. Tines supports various functions such as employee lifecycle management, software development lifecycle management, ticket management, and incident alerts, among others. Unlike many competitors, Tines focuses on providing a comprehensive solution that integrates multiple aspects of business operations into one platform. The goal of Tines is to save time and enhance efficiency for teams across different industries by automating their workflows.