Cybersecurity Analyst – Commercial Compliance

Job not on LinkedIn

🕒 March 20

🏄 California – Remote

🏄 California – Remote

💵 $140k - $180k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🔐 Security Analyst

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Armis

WebsiteLinkedInAll Job Openings

201 - 500 employees

Founded 2015

🔒 Cybersecurity

🏛️ Government

💰 $300M Private Equity Round on 2021-11

Cybersecurity • Healthcare • Government

Armis is a leader in cyber exposure management and security, specializing in the protection of operational technology (OT) and cyber-physical security solutions. With its platform, Armis Centrix™, the company empowers organizations to manage the entirety of their cyber risk exposure in real time, addressing critical vulnerabilities across various sectors including healthcare, financial services, manufacturing, and government. Through continuous innovation and acquisitions, such as OTORIO, Armis enhances its capability to protect a wide attack surface from sophisticated cyber threats.

📋 Description

• Provide direct support for external and internal audit efforts, specifically focusing on frameworks such as SOC 2 Type 2, ISO 27001, ISO 27017, ISO 27018, and ISO 42001. • Execute and document procedures for continuous monitoring and evidence gathering. • Implement automated solutions, including utilizing AI, to effectively reduce manual efforts associated with repetitive evidence collection tasks. • Review, edit and update internal security policies, standards and procedures to ensure they accurately reflect current operational controls and compliance requirements. • Assist in the supply chain risk management program by tracking vendor compliance documentation, reviewing vendor security posture, and maintaining the vendor risk register. • Participate in internal security audits and support the business development team by completing security questionnaires for Requests for Proposal (RFP), ensuring accurate and compliant representation of our controls.

🎯 Requirements

• 3-5 years of experience in a security, IT audit, GRC or related technical field. • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field; equivalent professional experience will be considered in lieu of a degree. • Maintain industry certifications such as CompTIA Security+ and work toward advanced certifications such as (ISC)² CISSP. • Foundational understanding of diverse regulatory environments and major security frameworks and compliance standards (e.g., ISO, SOC, HIPAA, SOX, NIST, FedRAMP, GovRAMP, DoD IL 5/6 PCI DSS). • Foundational understanding of enterprise IT and OT/ICS environments, including network protocols, operating systems, cloud platforms and security technologies. • Foundational understanding of core cloud technologies, particularly security concepts and services within AWS and GCP. • Strong organizational skills, exceptional attention to detail, and the ability to manage documentation effectively. • Excellent written communication skills, with experience reviewing and editing formal technical documents and policies.

🏖️ Benefits

• comprehensive health benefits • discretionary time off • paid holidays including monthly me days • highly inclusive and diverse workplace