Information Security Analyst (SOC 2 Compliance)

Information Security Analyst (SOC 2 Compliance)

Information Security Analyst (SOC 2 Compliance)

at Tevora

Irvine, CA or Fairfax, VA

If you havent heard of Tevora, its because weve done our job!

Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We strongly believe that if we put smart, driven people in a room together, they will accomplish great things. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins. That's why we have our eyes on you.

Whats the role?

Tevora is seeking an Information Security Analyst to join the SOC Compliance team.

This role on the SOC Compliance team is looking for a passionate individual who has a solid balance between business acumen and technical expertise. Comfortable across various disciplines of information security, this consultant will be responsible for assessing System and Organization Controls (SOC) compliance, for SOC 1 and SOC 2, on a wide variety of client projects for some of the world's largest organizations. Other compliance frameworks this role will work on may include ISO 27001 and PCI as well as GRC support for clients. This role will also provide mentorship to junior team members and participate in ongoing training opportunities.

The successful candidate for this role will be detail-orientated, have a solution-focused attitude, and possess strong written and verbal communication skills.

A day in the life could include :

• Participating in and leading IT and Compliance assessments, audits, gap analyses, and remediation.
• Leading and actively contributing to projects in the areas of System and Organization Controls (SOC 1 & SOC 2) Compliance assessments.
• Communicating with project stakeholders to effectively convey the requirements of technical and process improvements.
• Supporting various information security compliance projects, such as PCI or ISO gap assessments.
• Assisting in the development of customized policies, procedures, controls, disaster recovery plans and other documentation for applications, systems, and infrastructure for our clients.
• Managing policy exceptions, including working directly with the teams to document exceptions, and identifying compensating controls and remediation action plans.
• Take on additional responsibilities as needed or as new opportunities arise. Proactively support the team with tasks and projects that emerge over time.

Necessary skills and qualifications :

Bonus Points

Weve got you covered!

Additional requirements :

DOE

EEOC Statement

Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.

$92,400 - $115,000 a year

Compensation details : 92400-115000 Yearly Salary

PI21997a0888c1-30511-37039958