Split Tech City je zajednica sastavljena od tvrtki, udruga, institucija, meetupa i pojedinaca koji su posvećeni razvoju tehnološkog sektora u Splitu i regiji.

Postani član

ELEKS

Compliance Analyst

Datum objave: 10.1.2024.

ELEKS Information Security office is looking for Compliance Analyst in Poland, Croatia, and Estonia.

ABOUT CLIENT

Privately held large US Financial corporation with 40+ years of history. The main area of specialization is providing investment advisory services to US citizens. The company headcount includes more than 2k independent financial consultants and the head office team.

REQUIREMENTS
  • Solid experience in information security, risk assessment, in audits.
  • Experience in developing/maintaining ISMS.
  • Knowledge of security frameworks/standards (e.g. ISO 27001, SOC2, NIST, HIPAA, PCI DSS, GDPR, ITIL, Cobit etc.). Ability to conduct readiness/gap assessments, and provide recommendations.
  • Understanding of international information security laws/regulations.
  • Understanding of GRC framework.
  • Understanding of secure coding practices, ethical hacking, threat modeling, and secure SDLC process.
  • Understanding of DR / BCP.
  • Experience in defining security requirements as well as evaluating and selecting appropriate information security controls.
  • Understanding of IT and information security trends, and challenges.
  • Knowledge of security vendors, systems, and solutions.
  • Ability to deal with incomplete, poorly defined, or undocumented requirements.
  • Technical writing.
RESPONSIBILITIES
  • Using technical and compliance knowledge to test applications and vendors to ensure continuous adherence to regulatory and firm standards
  • Maintaining documentation to support institutional knowledge of technology applications and vendors
  • Documenting test plans, results, and remediation efforts
  • Investigating and tracking reports of technology issues from business owners and prioritizing reported issues based on regulatory impact and risk exposure
  • Communicating with vendor product representatives, internal stakeholders, and subject-matter experts throughout testing, evaluation, and issue resolution
  • Collect, analyze, and advocate for automation use cases with the goal of improving compliance efficiencies
  • Perform risk assessments and security audits.
  • Evaluate the efficiency, effectiveness and compliance of operation processes with corporate security policies and related security regulations.
  • Review or interview personnel to establish security risks and complications.
  • Determine the most effective way to protect organization’s assets against possible attacks. Develop rigorous “best practice” recommendations to improve security on all levels.
  • Define, implement, ensure and maintain corporate security policies.
  • Create and execute awareness program.
  • Perform periodic security reporting (both: executive and technical).
  • Collaborate with departments to improve security compliance, manage risk and bolster effectiveness.
  • Respond to security-related incidents and provide a thorough post-event analysis.
  • Define and apply secure coding guidelines and standards.
  • Research security vendors, standards, security systems and solutions.
  • Prepare cost estimates and identify integration issues.
  • Provide technical supervision for (and guidance to) a corporate security team.
  • Provide subject matter expertise in information security for internal / external requests.
  • Manage the identity and access provisioning lifecycle.
  • Participate in Business Continuity / Disaster Recovery planning and exercises.
  • Work as a team member performing any and all functions necessary for the successful operation of the Corporate Security department.
WHAT WILL YOU GET WITH ELEKS
  • Close cooperation with a customer
  • Business trips
  • Challenging tasks
  • Competence development
  • Ability to influence project technologies
  • Projects from scratch
  • Team of professionals
  • Dynamic environment with low level of bureaucracy
ABOUT ELEKS

ELEKS is a custom software development company. We deliver value to our clients, thanks to our expertise and experience gained from working as a software innovation partner since 1991.

Our 2000+ professionals located in the Delivery Centers across Eastern Europe and sales offices in Europe and North America, provide our clients with a full range of software engineering services. These include product development, QA, R&D, design, technology consulting and dedicated teams.

Info

Vrsta zaposlenja
Full time

Prijavi se za posao