Senior Compliance Analyst
Posted on 8/30/2022
INACTIVE
Locations
Vienna, VA, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Communications
Requirements
- BA or BS (or higher-level degree) in business, accounting, finance, computer science, information systems or a related discipline plus a minimum of five years' experience in a compliance, audit, or related capacity
- Advanced Technical Writing
- Knowledge and understanding of GDPR, SOX, SOC II, ISO 27001, PCI, HIPAA and NIST standards, especially NIST 800-53, 800-18, 800-34, 800-37, 800-60
- Knowledge of Information Technology and Information Security Concepts
- Ability to effectively communicate with both technical and non-technical personnel
- Ability to interpret management, operational and technical implementation methods to determine compliance with existing controls
- Proven team experience and comfort in a team-oriented environment
- Passion for working with technology and excitement for creating high quality consumer technology product
- Collaborate with outstanding people: Our employees work hard, do great work, and enjoy collaborating and learning from each other
- Make an immediate impact: New employees can expect to be given real responsibility for bringing new technologies to the marketplace. You are empowered to perform as soon as you join the team!
- Gain well rounded experience: EnergyHub offers a diverse and dynamic environment where you will get the chance to work directly with executives and develop expertise across multiple areas of the business
- Work with the latest technologies: You'll gain exposure to a broad spectrum of IoT, SaaS and machine learning challenges, including distributed fault-tolerance, device control optimization, and process modeling to support scalable interaction with disparate downstream APIs
- Be part of something important: Help create the future of how energy is produced and consumed. Make a positive impact on our climate
- Focus on fun: EnergyHub places high value on our team culture. Happy hours and holiday parties are important to us, but what's also important is how our employees feel every single day
Responsibilities
- Assist with SOX/SOC II/PCI/ISO 27001 evidence collection activities to meet compliance requirements
- Lead cross-functional business and governance projects, including defining, implementing, and analyzing IT processes and procedures that support the company's business objectives
- Act as the privacy point person for the company (GDPR, CCPA, CPPA, etc), ensuring policies and procedures are in compliance
- Participate in compliance audits and assist in preparing documentation for onsite vendor program reviews
- Experience analyzing and implementing compliance programs and designing and implementing processes/controls
- Collaborate with other departments across EnergyHub to ensure effective communication, training, and understanding of IT policies and procedures
- Monitor IT policies to ensure compliance with all aspects of federal, state, and local laws and regulations. Maintain the policy library to ensure it is up to date
- Suggest mitigation strategies to reduce risk to the environment
- Research and respond to security questionnaires from potential customers
- Evaluate waivers/exceptions to policies to ensure they are accurate and still meet their initial intent