Compliance and Risk Analyst

Job Summary

A company is looking for a Compliance & Risk Analyst responsible for managing third-party audits and certification programs.

Key Responsibilities

• Implement and manage third-party audit and certification programs, including controls testing and remediation
• Coordinate with internal control owners to assess control design and test effectiveness across the organization
• Oversee the ISO certification process and ensure compliance with necessary standards and audits

Required Qualifications, Training, and Education

• Bachelor's Degree in Business Administration, Risk Management, Quality Assurance, or related field
• Six or more years of experience in security assurance and trust frameworks, including PCI DSS and ISO certifications
• Experience designing and managing SOC controls and ISO quality programs
• Knowledge of COSO and NIST frameworks
• Proficiency in Microsoft Office and familiarity with major ERP systems (Workday, Jira, ServiceNow) is a plus