[Remote] Information Security Risk Analyst

Note: The job is a remote job and is open to candidates in USA. StackAdapt is the leading technology company that empowers marketers to reach, engage, and convert audiences with precision. As an Information Security Risk Analyst, you will play a vital role in keeping StackAdapt’s systems and information secure by helping to identify, assess, and manage information security risks across the organization.ResponsibilitiesSupporting the identification, assessment, and management of information security risks, including maintaining risk registers, monitoring remediation actions and following up on agreed risk treatmentsAssisting with vendor security risk assessments during onboarding and ongoing reviewsContributing to customer security assurance activities, such as completing security questionnairesHelping to coordinate StackAdapt’s centralized IT General Controls framework designed to manage security, compliance, and governance for enterprise IT systemsParticipating in the governance of recurring user access reviews (UARs) and segregation of duties (SoD) assessments for enterprise applicationsSupporting the governance of role-based access controls (RBAC) for enterprise IT applicationsAssisting with compliance activities against security frameworks and standards (e.g. SOC 2, PCI, etc.)Working with internal teams to gather information and evidence for risk and compliance activitiesLearning about emerging security risks, regulatory requirements, and industry best practicesSkills1 to 3 years of experience in a related fieldBachelor's degree (or higher) in cyber security, information technology, risk management, law, business, or a related discipline (or equivalent practical experience)Experience supporting risk assessments, audits, or control testing activitiesAbility to work cross-functionally with various teams such as Internal Audit, IT Operations, Engineering, Legal and FinanceExperience in designing, implementing, and/or managing application user access reviews, segregation of duties reviews, and/or conducting security risk assessmentsStrong communication skills, both written and verbalStrong organisational and time management skills, as well as an ability to meet deadlinesInterest in information security governance, risk, and compliance (GRC)Understanding of information security and risk management conceptsAwareness of security frameworks or standards (e.g., ISO 27001, NIST, SOC 2) and/or IT compliance frameworks (e.g., Sarbanes–Oxley (SOX))Strong attention to detail and ability to work with documentation and evidenceAbility to work collaboratively with technical and non-technical stakeholdersWillingness to learn and develop within an information security or GRC career pathBenefitsHighly competitive salaryRetirement/ 401K/ Pension Savings globallyCompetitive Paid time off packages including birthday's off!Access to a comprehensive mental health care programHealth benefits from day one of employmentWork from home reimbursementsOptional global WeWork membership for those who want a change from their home office and hubs in London and TorontoRobust training and onboarding programCoverage and support of personal development initiatives (conferences, courses, books etc)Access to StackAdapt programmatic courses and certifications to support continuous learningAn awesome parental leave programA friendly, welcoming, and supportive cultureOur social and team events!Company OverviewStackAdapt is a multi-channel programmatic advertising platform that helps maximize digital marketing efforts through data-driven solutions. It was founded in 2014, and is headquartered in Toronto, Ontario, CAN, with a workforce of 1001-5000 employees. Its website is https://www.stackadapt.com.



Apply To This Job