Compliance Analyst (Security Analyst)
R-103386
04 July 2024
The security compliance analyst position will provide and serve as a resource for security and compliance related tasks and projects. This role will develop, support and execute processes that enforce Assurant security policies and standards, regulatory requirements, contractual agreements/obligations and any other IT related security compliance or privacy requirements.
Primary Job Responsibilities
70% - Compliance Support
Conduct regular assessments to ensure compliance with cybersecurity regulations, standards, and industry best practices.
Support the development of policies, procedures, and controls to address cybersecurity compliance requirements.
Coordinate and participate in internal and external audits related to IT security compliance.
Identify and assess risks to information assets and recommend mitigation strategies to address compliance gaps.
Collaborate with IT and business stakeholders to implement security controls and remediate compliance issues.
Monitor changes in regulations and standards to ensure ongoing compliance and recommend updates to policies and procedures as necessary.
Prepare and maintain documentation, reports, and evidence of compliance activities for audit purposes.
Provide guidance and training to staff on cybersecurity policies, procedures, and compliance requirements.
Assist with incident response activities and investigations related to cybersecurity compliance issues.
30% - Support and maintain systems and processes related to security and compliance functions.
Participate in audit activities, client audits, state DOI exams, RFP/due diligence reviews,
internal audits
Participate in all audit activities relating to SSAE-18 SOC 1 & 2 and SOX 404 IT audits ensuring work and deliverables in accordance with agreed upon timeframes and departmental procedures, stan