What are the responsibilities and job description for the Information Security Compliance Analyst position at National Futures Association?
When you join NFA as an Information Security Compliance Analyst, you will work with the Information Security Compliance Team to support NFA's comprehensive security compliance functions.
Bring your analytical and innovative skills. Bring your thirst for knowledge and learning. Bring a healthy skepticism and an eye for detail.
What you'll do:
You'll join a high-performing team of dedicated analysts who ensure compliance with established policies and standards. Specifically, your responsibilities will include:
- Conducting IT audits to ensure internal systems adhere to SOC-2 and NIST standards.
- Assessing enterprise risks and ensuring risk remediation in accordance with NFA's policies.
- Evaluating NFA's information security controls to ensure industry standards and regulations are met, while updating internal policies as needed.
- Identifying third-party vendor risks to ensure compliance of industry standards.
- Testing infrastructure servers and ensuring their hardening guides and policies align with the CIS control framework.
- Assisting in critical IT projects to ensure security policy and risk issues are addressed throughout the project life cycle.
- Monitoring NFA's change management process.
What we're looking for:
Team-oriented individuals thrive in this collaborative, analytical role. If you're eager to apply your Information Security abilities to serve a public good—supporting the integrity of the derivatives markets—and meet the qualifications below, we encourage you to apply to join our team as an Information Security Compliance Analyst I.
- Bachelor's degree in computer science, Information Security or related fields
- One to four years of experience in security compliance or industry related field
- Knowledge of industry standards and regulations (e.g. SOC 2, NIST, ISO 27001)
- Basic familiarity with technology risks and controls, governance, risk and compliance tools
- Excellent oral and written communication skills
- Strong analytical, decision-making and problem-solving abilities
- Certifications such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) and Certified Information Systems Security Professional (CISSP) preferred
The salary range for this role: $76,900-$128,000.00
Salary : $76,900 - $128,000
