Search Jobs
Find your next opportunity today.
Information Security Compliance Analyst (ISCA)
10100 Santa Monica Blvd #2200 Los Angeles, CA 90067 US
Job Description
Position Overview: We are seeking a talented Information Security Compliance Analyst (ISCA) with 3 – 8 years of experience to join our client’s team. Reporting to the Manager of Governance, Risk and Compliance (GRC), the ISCA will play a pivotal role in ensuring the firm's information security practices align with regulatory requirements and client expectations.
Key Responsibilities:
- Conduct security auditing, risk assessments, and monitoring activities.
- Contribute to Security Incident Response planning, documentation, and continuous improvement.
- Analyze risk exceptions, assign risk ratings, and provide mitigation/remediation recommendations.
- Assist in the creation and maintenance of security and governance practices.
- Manage client questionnaires and vendor risk assessments.
- Ensure compliance with outside client guidelines (OCGs), especially in areas such as Cloud security, Privacy, and IT notification requirements.
Essential Functions:
- Security Auditing: Execute thorough security audits and assessments.
- Incident Response: Contribute to planning, documentation, and continuous improvement.
- Risk Assessment: Analyze risks, exceptions, and provide mitigation/remediation recommendations.
- Security & Governance: Assist in creating and maintaining security and governance practices.
- Client Requirements: Manage OCGs for quick reference regarding client-specific security, privacy, and IT notification requirements.
Must-Haves:
- 3 – 8 years of relevant experience.
- Prior experience in a law firm.
- Working knowledge of ISO 27001 and 27017 compliance and policies.
- Proficiency in Microsoft Word, Excel, and PowerPoint.
- Knowledge of network security principles, best practices, and industry standards.
- Familiarity with security tools and concepts, including IDS/IPS, SIEM, Encryption, etc.
- Team player with adaptability to changing environments.
- Detail-oriented, thorough, and well-organized.
- Experience in GRC activities, especially with ISO 27001.
- Familiarity with Microsoft compliance and security, Cloud (Azure, M365, E5), and related services.
Nice-to-Haves:
- Experience with Information Security for Identity and Access Management.
- Bachelor’s degree (Cybersecurity, Information Technology, Computer Science, Information Science, Risk Management and Insurance).
- Certificate (CISSA, CISSP, CISM)
If you are a dynamic Information Security Compliance Analyst seeking a challenging and rewarding opportunity within a prestigious law firm, we invite you to apply. Join us in upholding the highest standards of information security and compliance in the legal industry.
Â
Please view our Privacy Policy.
Share This Job:
Related Jobs:
About Los Angeles, CA
Are you sure you want to apply for this job?
Please take a moment to verify your personal information and resume are up-to-date before you apply.