Information Security & Compliance Analyst

Location: Dallas Office

DLRdmv™ creates and deploys innovative Title & Registration technology and Governmental Compliance solutions to the Automotive Industry. DLRdmv provides an exciting, entrepreneurial work environment for individuals interested in being a part of a growing company that is fully committed to serving its customers.

Job Description

The Information Security & Compliance Analyst (ISCA) ensures data is handled, processed, and managed according to industry best practices while supporting the development and testing of security controls to meet SOC 2 and other compliance obligations. This role requires staying up to date on emerging technologies and industry trends while maintaining a thorough understanding of the company’s security, data handling, and risk management obligations.

The ISCA works collaboratively with other teams to design, improve, and assess the effectiveness of current policies and controls. Additionally, the role may involve special projects and other assignments as directed by management.

Major Job Responsibilities

• Perform periodic testing and auditing designed to ensure operating effectiveness of internal controls
• Perform ongoing risk assessments and lead exercises to improve threat and incident response plans
• Support the development and updating of policies to address evolving technologies and emerging threats
• Respond to system or security events and incidents, assisting in remediation, investigation, and root cause analysis
• Respond to 3rd party requests for information relating to policy, systems, information security, and data handling
• Demonstrate a commitment to ongoing professional development by staying informed about emerging technologies and industry trends
• Support the CIO and IT Department on projects as assigned
  
  

Experience & Qualifications

• Bachelor’s degree in cybersecurity, information systems, computer science, or related field of study. Equivalent professional experience considered in lieu of a degree.
• 3 years of experience in IT, cybersecurity, compliance, or a related field
• Familiarity with security monitoring tools, vulnerability management systems, and incident response processes
• Experience in performing risk assessments, developing incident response plans, and working with internal control frameworks (e.g., NIST CSF, ISO 27001, SOC 2, or similar) strongly preferred
• Working knowledge of the Gramm-Leach-Bliley Act (GLBA) and Safeguards Rule is a plus
• Active CISA or CISSP certification is a plus
• Excellent problem solving and empirical skills; meticulous attention to detail
• Excellent verbal and written communication skills
• Proficiency with scripting and programming languages (e.g., Bash, PowerShell, Python, .Net)
• Understanding of software engineering practices and SDLC
• Experience with AWS or other cloud platforms strongly preferred
  
  

DLRdmv offers a competitive salary and a comprehensive benefits package including life, medical, dental, vision, and more.

DLRdmv is an EEO Employer. We sincerely appreciate your interest and will carefully evaluate your qualifications for employment. Be assured your opportunity for employment with our company will be based only on your merit without regard to race, color, religion, sex, age, national origin, mental or physical disability, or any other factor unrelated to job requirements.