Knowledge of ISO 27001/27002, COBIT, NIST, GDPR, and other regulatory requirements.
Strong verbal and written communication skills.
Salary Information:
The salary range for this position is $80,000-$100,000 per year, depending on experience and qualifications.
Job Title: Compliance Analyst - Information Technology (IT)
Experience: 5+ years in vendor risk management/GRC, IT auditing, or supplier procurements
Essential Duties and Responsibilities:
As a Compliance Analyst at our law firm, you will be responsible for various governance, risk, and compliance services related to vendor risk management, client information security obligations, ISO 27001 certification, internal and external audits, and other related programs and processes. Your main duties will include the following:
- Facilitating vendor risk management processes and procedures, including intake and risk assessment lifecycle.
- Providing support for ISO 27001 certification and compliance.
- Assisting with internal and external audits.
- Communicating compliance and risk management concepts to vendor relationship managers.
- Conducting risk assessments and creating business cases for renewal of technology vendors and service providers.
- Ensuring compliance with data security best practices and IT operational requirements.
Qualifications:
To be considered for this role, you must meet the following qualifications:
- Bachelor's degree in Information Technology, Information Security, or Technology Management.
- At least 5 years of experience in vendor risk management/GRC, IT auditing, or supplier procurements.
- Familiarity with contracting processes.
- Certifications through ISACA (CRISC, CISM, CGEIT), GIAC (., GCCC), ISC2 (CAP or Associate status), or IAPP (CIPT, CIPP) preferred.
- Knowledge of ISO 27001/27002, COBIT, NIST, GDPR, and other regulatory requirements.
- Strong communication skills, both verbal and written.
Salary Information:
The salary range for this position is $80,000-$100,000 per year, depending on experience and qualifications.
Compliance Analyst Responsibilities at Law Firm:
As a Compliance Analyst at our law firm, you will be responsible for various governance, risk, and compliance services related to vendor risk management, client information security obligations, ISO 27001 certification, internal and external audits, and other related programs and processes. Your main duties will include the following:
- Facilitating vendor risk management processes and procedures, including intake and risk assessment lifecycle.
- Providing support for ISO 27001 certification and compliance.
- Assisting with internal and external audits.
- Communicating compliance and risk management concepts to vendor relationship managers.
- Conducting risk assessments and creating business cases for renewal of technology vendors and service providers.
- Ensuring compliance with data security best practices and IT operational requirements.
Required Qualifications for Compliance Analyst:
To be considered for this role, you must meet the following qualifications:
- Bachelor's degree in Information Technology, Information Security, or Technology Management.
- At least 5 years of experience in vendor risk management/GRC, IT auditing, or supplier procurements.
- Familiarity with contracting processes.
- Certifications through ISACA (CRISC, CISM, CGEIT), GIAC (., GCCC), ISC2 (CAP or Associate status), or IAPP (CIPT, CIPP) preferred.
- Knowledge of ISO 27001/27002, COBIT, NIST, GDPR, and other regulatory requirements.
- Strong communication skills, both verbal and written.
Law Firm Compliance Analyst Job Description:
Position: Compliance Analyst - Information Technology (IT)
Experience: 5+ years in vendor risk management/GRC, IT auditing, or supplier procurements
Responsibilities:
As a Compliance Analyst at our law firm, you will be responsible for various governance, risk, and compliance services related to vendor risk management, client information security obligations, ISO 27001 certification, internal and external audits, and other related programs and processes. Your main duties will include the following:
- Facilitating vendor risk management processes and procedures, including intake and risk assessment lifecycle.
- Providing support for ISO 27001 certification and compliance.
- Assisting with internal and external audits.
- Communicating compliance and risk management concepts to vendor relationship managers.
- Conducting risk assessments and creating business cases for renewal of technology vendors and service providers.
- Ensuring compliance with data security best practices and IT operational requirements.
Qualifications:
To be considered for this role, you must meet the following qualifications:
- Bachelor's degree in Information Technology, Information Security, or Technology Management.
- At least 5 years of experience in vendor risk management/GRC, IT auditing, or supplier procurements.
- Familiarity with contracting processes.
- Certifications through ISACA (CRISC, CISM, CGEIT), GIAC (., GCCC), ISC2 (CAP or Associate status), or IAPP (CIPT, CIPP) preferred.
- Knowledge of ISO 27001/27002, COBIT, NIST, GDPR, and other regulatory requirements.
- Strong communication skills, both verbal and written.
Salary Information:
The salary range for this position is $80,000-$100,000 per year, depending on experience and qualifications.
Key Responsibilities for Compliance Analyst:
- Facilitate vendor risk management processes and procedures.
- Provide support for ISO 27001 certification and compliance.
- Assist with internal and external audits.
- Communicate compliance and risk management concepts to vendor relationship managers.
- Conduct risk assessments and create business cases for renewal of technology vendors and service providers.
- Ensure compliance with data security best practices and IT operational requirements.
Qualifications for Compliance Analyst:
- Bachelor's degree in Information Technology, Information Security, or Technology Management.
- 5+ years of experience in vendor risk management/GRC, IT auditing, or supplier procurements.
-
