Security Compliance – Junior Analyst
Onsite
Sydney, Australia
Sydney, Australia
Full Time Posted 21 days ago
Job Type
Full Time
Job Details
Job Description Please note : Applicants residing in Australia and holding the necessary right to work in the country will be given consideration for this position. What you get to do in this role We are looking for a highly motivated, collaborative and technically experienced Security Compliance - Junior Analyst with ability to understand and influence cloud operational and security processes, effectively communicate ServiceNow’s controls including intent, and drive changes within the organisation through effective testing. The successful candidate must be reliable, resourceful and have a “can-do” attitude. You will be a key member of our team and play an important role in defining the Security and Compliance framework for a leading cloud company. In this role you will be required to demonstrate ability to analyse difficult problems, think out-of-box and provide pragmatic solutions and recommendations. ServiceNow current compliance initiatives are focused on, but not limited to Australia’s IRAP, Singapore MTCS, Japan’s ISMAP, and other global programs such as ISO 27001, ISO 27018, PCI, SSAE 18, and SOC 2. Security Compliance Junior Analyst will be involved in driving and measuring compliance for the cloud business systems, control areas, process, and product for company compliance initiatives. Responsibilities
- Perform activities to help measure and monitor compliance with company policies and procedures
- Facilitate certifier requests and information gathering for audit activities and lead onsite audits
- Conduct activities to comply with the various Government Cyber Security requirements within the APJ
- Successfully drive security compliance testing activities across various teams within the organisation
- Contribute by enhancing and maturing the existing common control framework
- Liaise with Risk Management and conduct security risk assessment activities
- Help our customers understand ServiceNow’s security and compliance control environment
- Contribute towards enhancing the GRC tool and processes to meet compliance business needs
- 2+ years working in the field of security compliance, security risk or audit, or general cyber security.
- Direct and recent working experience with any of the following compliance programs: IRAP, MTCS, ISO 27001, PCI, SSAE18, and/or SOC2
- Prior experience working in the Security and Compliance group at a SaaS/Cloud company or with Security and Risk practice of a Big Four firm is desirable
- Relevant professional certifications such as CISSP, CISA, CISM are desirable
- Demonstrated experience working in large projects
- Experience using a GRC system
- Excellent report writing skills, ability to prepare compliance reports and associated metrics
- Excellent verbal and written communication skills
- Be able to work effectively with other members of the GRC organization to drive results
Learn more about ServiceNow
Help us maintain the quality of jobs posted on PowerToFly. Let us know if this job is closed.
Mission
We're connecting diverse talent to big career moves. Meeting people who boost your career is hard - yet networking is key to growth and economic empowerment. We’re here to support you - within your current workplace or somewhere new. Upskill, join daily virtual events, apply to roles (it’s free!).
Are you hiring? Join our platform for diversifiying your team