Compliance Analyst

Job Category: IT and Technology
Job Type: Full Time
Job Location: USA
Salary: Up to $100K/yr
Company Name: Specialized Recruiting Group

Company Overview:

Specialized Recruiting Group focuses on connecting professionals with permanent and contract opportunities in specialized sectors such as Accounting, Banking & Finance, Engineering, Manufacturing & Technical, IT, HR, Logistics & Procurement, and Sales.

Job Opportunity: IT Risk and Compliance Analyst

We’re seeking a motivated entry-level IT Risk and Compliance Analyst to help safeguard our organization’s digital assets and ensure we meet all relevant legal and regulatory requirements. You’ll collaborate across departments to identify risks, develop security policies, and implement training programs that build a strong culture of security and compliance. This is an excellent opportunity to launch your career in the growing fields of cybersecurity and data privacy.

In this role, you will:

  • Assist with internal cybersecurity risk assessments to pinpoint vulnerabilities and potential threats.
  • Contribute to the development and implementation of IT Risk and Compliance tools.
  • Work with IT and security teams to recommend strategies for mitigating identified risks.
  • Independently conduct vendor risk assessments to evaluate the security practices and regulatory compliance of third-party vendors.
  • Collaborate with vendors to ensure they adhere to our organizational security standards.
  • Support privacy impact assessments to understand the risks associated with processing personal data.
  • Help develop strategies to minimize privacy risks.
  • Assist in creating, reviewing, and managing IT policies and procedures that align with regulations and industry best practices.
  • Ensure effective communication of policies throughout the organization.
  • Help develop and deliver awareness and training materials to educate employees on cybersecurity and data privacy principles.
  • Coordinate training sessions to improve staff understanding and compliance.

What you’ll bring:

  • A solid understanding of risk assessment and risk analysis methods.
  • Familiarity with the process of developing policies and procedures.
  • Knowledge of relevant frameworks, industry standards, and regulations such as NIST CSF, ISO 27001, SOC 2, NIST 800-53, SOX, and GDPR.
  • Excellent verbal and written communication skills.
  • The ability to work effectively with teams across different departments.
  • A strong grasp of fundamental cybersecurity principles and practices.
  • Knowledge of data privacy principles and practices.
  • Education: A Bachelor’s degree in Computer Science, Computer Information Systems, Business Administration, or a related field is required. Alternatively, 3-5 years of direct experience in IT governance, risk, and compliance without a formal degree will also be considered.
  • Experience: This is an entry-level position requiring 0-2 years of relevant experience in IT risk management, compliance, or cybersecurity.
  • Certifications (Preferred): Security+, CGRC, CIPP/US, CIPP/E.

Compensation: The typical salary range for this role in Buffalo, NY is $70,000 to $90,000 annually, based on your education, certifications, and experience. Entry-level candidates can expect to start closer to the lower end of this range.

APPLY

Apply for this position

Allowed Type(s): .pdf, .doc, .docx