Sr. Information Security Analyst (Governance, Risk, Compliance , ISO 27001,cloud security and cybersecurity)
IN-Hyderabad
- Apply
-
-
How Do You Want to Share?
Our fast-paced and collaborative environment inspires us to create, think, and challenge each other in ways that make our solutions and our teams better. Whether you’re interested in engineering or development, marketing or sales, or something else – if this sounds like you, then we’d love to hear from you!
We are headquartered in Denver, Colorado, with offices in the US, Canada, and India.
JOB DESCRIPTION
This role is part of Vertafore’s Information Risk Management program and will be responsible for assessing, managing, and mitigating risks related to V4’s information assets and business processes. This role involves conducting risk assessments, developing risk management strategies, and ensuring compliance with regulatory requirements, industry standards, and client-related obligations. This individual will play a pivotal role in ensuring that Vertafore’s operations, products, and services are compliant with industry standards while helping to mitigate risks and support governance initiatives.
Core Requirements and Responsibilities:
Essential job functions included but are not limited to the following:
· Perform risk assessments and conduct security audits across departments to ensure compliance with regulatory and industry standards.
· Maintain and enhance cybersecurity metrics to ensure that KPIs and KRIs are used to make informed risk decisions.
· Collaborate with internal teams (product, legal, IT, and development) to develop, implement, and maintain Formstack’s security policies, controls, and procedures. - Assist in the preparation and facilitation of external audits and certifications (e.g., SOC 2 audits, ISO 27001 certification processes).
· Assist in the maintenance and enhancement of Vertafore’s risk management framework, including the identification, assessment, and mitigation of operational, legal, and regulatory risks.
· Provide guidance on governance initiatives and best practices to help improve organizational alignment with compliance and risk management standards. Assist with Information Risk Management projects to help improve organizational alignment with compliance and risk management standards.
Knowledge, Skills, and Abilities:
· Hungry to learn and grow in a fast-growing technology company
· Clear communication skills, with the ability to tailor messaging to the intended audience
· Can carry out specific tasks and execute plans while providing constructive feedback
· Ability to maintain a positive attitude in a dynamically changing environment
· Requires minimal management attention—self managed and can work in a fluid environment
· Must be inquisitive and quick learner with attention to detail
Qualifications:
· 5+ years of experience in Governance, Risk, and Compliance (GRC) or a related field, ideally within a SaaS, technology, or healthcare-related environment. Strong knowledge of industry standards and frameworks, including NIST 800:53, SOC 2, or ISO 27001.
· Demonstrated experience conducting risk assessments, security audits, and managing compliance projects.
· Hands-on experience with cloud security and compliance in environments like AWS. Strong understanding of all aspects of cybersecurity including, but not limited to, application security, endpoint security, network security, identity and access management, and zero trust.
· Bachelor’s degree in a relevant field (e.g., Information Security, IT, Business, Law, Engineering) (Preferred)
· Certifications such as CISA, CRISC, CGRC, CRMA, CISM, or CISSP (Preferred)
Why Vertafore is the place for you: *Canada Only
- The opportunity to work in a space where modern technology meets a stable and vital industry
- Medical, vision & dental plans
- Life, AD&D
- Short Term and Long Term Disability
- Pension Plan & Employer Match
- Maternity, Paternity and Parental Leave
- Employee and Family Assistance Program (EFAP)
- Education Assistance
- Additional programs - Employee Referral and Internal Recognition
Why Vertafore is the place for you: *US Only
- The opportunity to work in a space where modern technology meets a stable and vital industry
- We have a Flexible First work environment! Our North America team members use our offices for collaboration, community and team-building, with members asked to sometimes come into an office and/or travel depending on job responsibilities. Other times, our teams work from home or a similar environment.
- Medical, vision & dental plans
- PPO & high-deductible options
- Health Savings Account & Flexible Spending Accounts Options:
- Health Care FSA
- Dental & Vision FSA
- Dependent Care FSA
- Commuter FSA
- Life, AD&D (Basic & Supplemental), and Disability
- 401(k) Retirement Savings Plain & Employer Match
- Supplemental Plans - Pet insurance, Hospital Indemnity, and Accident Insurance
- Parental Leave & Adoption Assistance
- Employee Assistance Program (EAP)
- Education & Legal Assistance
- Additional programs - Tuition Reimbursement, Employee Referral, Internal Recognition, and Wellness
- Commuter Benefits (Denver)
The selected candidate must be legally authorized to work in the United States.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all the job responsibilities, duties, skill, or working conditions. In addition, this document does not create an employment contract, implied or otherwise, other than an "at will" relationship.
Vertafore strongly supports equal employment opportunity for all applicants regardless of race, color, religion, sex, gender identity, pregnancy, national origin, ancestry, citizenship, age, marital status, physical disability, mental disability, medical condition, sexual orientation, genetic information, or any other characteristic protected by state or federal law.
The Professional Services (PS) and Customer Success (CX) bonus plans are a quarterly monetary bonus plan based upon individual and practice performance against specific business metrics. Eligibility is determined by several factors including: start date, good standing in the company, and actives status at time of payout.
The Vertafore Incentive Plan (VIP) is an annual monetary bonus for eligible employees based on both individual and company performance. Eligibility is determined by several factors including: start date, good standing in the company, and actives status at time of payout.
Commission plans are tailored to each sales role but common components include quota, MBO's and ABPMs. Salespeople receive their formal compensation plan within 30 days of hire.
Vertafore is a drug free workplace and conducts preemployment drug and background screenings.
We do not accept resumes from agencies, headhunters or other suppliers who have not signed a formal agreement with us.
We want to make sure our recruiting process is accessible for everyone. if you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact recruiting@vertafore.com
Just a note, this contact information is for accommodation requests only.