What are the responsibilities and job description for the Information Security Analyst position at Cleerly?
Our information Security team is growing and we have an immediate opening for an Information Security Analyst to help support and execute Cleerly’s security and compliance objectives. Reporting to the Director of Information Security, this role will be a multi faceted generalist information security specialist function that assists in GRC and compliance functions, as well as execute on basic security related functions. The ideal candidate is a self motivated individual that is great at task and time management, and is willing to learn and adapt to changing environments. This role is based in Denver, CO.
What would I be doing?
You will be working with our Information Security leader, but also cross functional members with internal and external stakeholders to assist in day to day operations and monitoring of security controls. On any given day you could be:
- Monitor and address alerts or notifications for security related issues and initiating investigative actions
- Continuously monitor and evaluate internal controls for areas of improvements
- Conduct user access reviews to applications and services
- Assist in third party risk management and due diligence processes
- Review user access requests for approvals and completed documentation
- Participate in evidence gathering processes to support security processes and audit procedures
- Performing change management and periodic IT maintenance functions
- Periodically review policies and procedures for compliance with best practices and compliance frameworks
Qualifications
- Two to four years of experience in security or compliance analysis, or assurance/advisory experience over IT/IS general controls
- BS degree in Management Information Systems, Computer Science, or a related field
- Previous experience working within a startup environment
- Strong understanding of internal controls necessary to meet compliance frameworks such as ISO 27001, PCI DSS, HITRUST, and SOC 2
- Excellent verbal and written communication skill sets for addressing security concerns from internal stakeholders within the Company
Impress us more
- CISA, CISM, CISSP, or related certifications
- Experience in conducting training seminars or sessions with employees on new technologies
- Experience in the digital healthcare industry
Salary: $110,000 - $120,000*
*Total Target Compensation (TTC): Total Cash Compensation (including base pay, variable pay, commission, bonuses, etc.). We hire employees anywhere within the United States and account for geography when determining base salary.
Salary : $110,000 - $120,000
