Security & Privacy Analyst
Posted on 3/28/2023
Dorchester, Boston, MA, USA
Experience Level
  • 1-2 years of experience in privacy regulations with experience applying them to high growth technology companies
  • Experience supporting security compliance programs and monitoring, such as those related to SOC 2, NIST, PCI, or SOX
  • Experience running risk and security governance activities and routines
  • Knowledge of industry best practices for Cloud security (e.g. CSA Security Trust Assurance and Risk, CIS Benchmarks, NIST Framework)
  • Experience facilitating DSAR request responses
  • Experience automating security control evidence collection
  • Review, track, and validate routine security and privacy activities to ensure compliance with our internal policies and procedures
  • Work closely with security and privacy stakeholders across the organization to coordinate various security and privacy projects, incident reviews, and audits
  • Lead internal and external security audits through an understanding of our SOC 2 controls, and internal procedures
  • Design, implement and execute processes to address evolving consumer privacy best practices and regulations (e.g. CCPA, CPRA, etc.)
  • Create internal reports and recommendations to improve our security and privacy programs
  • Manage our third party risk through vendor assessments and make recommendations on implementation strategies
  • Support the Sales team in customer security inquiries and assessments
  • Partner with our legal counsel, lending technical expertise, where necessary
  • Drive and evolve our security and privacy awareness programs that align with our standards and company culture
  • Per year
  • Please note: Final offer amounts are determined by multiple factors, including prior experience, expertise and region & may vary from the amount above. This range does not represent additional compensation benefits (such as equity, 401K or medical, dental or vision insurance)

1,001-5,000 employees

Online catering marketplace