Job Information
Quickbase Compliance & Security Analyst in Sofia, Bulgaria
Position Overview – Compliance & Security Analyst
Reporting to the Senior Manager, Governance, Risk & Compliance, you will be responsible for establishing, maintaining and promoting processes and procedures which enable Quickbase to operate in an efficient, secure and compliant manner. This role supports the organization’s security requirements and obligations mandated by various standards and regulations. In tandem with GRC leadership and the wider Security & Compliance team, the Compliance & Security Analyst consistently assesses and validates the assurance of the security program. A major component of this role includes managing tasks which support trust and transparency across Quickbase and externally with Quickbase customers and business partners.
Responsibilities
Ensure security and technology teams maintain up-to-date configuration documentation for systems and processes. Maintain rigorous oversight of security systems and security configuration administration to reduce risk to enterprise systems and accounts.
Identify strengths and weaknesses in the security program as they relate to privacy, security, business resiliency and compliance frameworks.
Document, formulate and enforce areas of security improvement that balance risk with business operations and do not diminish efficiencies or innovation.
Recommend risk reduction steps to be implemented and maintained through policies, procedures, frameworks and technical controls.
Assist in internal and external audit, review and assessment processes.
Manage and develop customer facing security and compliance assurance material.
Assist in the maintenance of governance, risk and compliance systems and workflows to support compliance and control objectives.
Coordinate and assist in customer security risk & compliance requests, questionnaires and assessments.
Act as liaison between Security & Compliance and other internal Quickbase teams to assist in issue resolution, maintaining constructive relationships, and promote understanding of risk & compliance policies and procedures.
Monitor trends and areas for improvement across Quickbase.
Learn and apply governance, risk and compliance best practices across all tasks
Remain up-to-date with regulations and industry best practices applicable to cloud service providers
Skills and Experience
At least 2+ years’ experience in cybersecurity as a practitioner and with at least 1+ years’ exposure with various security frameworks.
Experience and understanding of various regulatory frameworks, requirements and laws, including but not limited AICPA SSAE18 SOC1/SOC2; DFARS; HIPAA; NIST CSF; NIST SP 800-53; and NIST 800-171.
Capacity to understand legacy and progressive technology and controls in relation to IT/IS security and risk.
Track record of acting with integrity and confidentiality, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Exceptional written and verbal communication skills, and proven ability to translate security and risk to all levels of the business.
Demonstrated organizational, prioritization and time management skills to ensure tasks are completed in an accurate, timely and detail-oriented manner.
Additional Qualifications
Preferred experience with cloud environments such Amazon Web Services (AWS), Google Cloud Platform (GCP) and Microsoft Azure.
Prior experience at a SaaS, PaaS and/or IaaS provider.
What we offer in exchange for your commitment and good work:
Flexible working hours and unlimited remote work policy with a local Bulgarian office in Sofia
25 days of annual leave, 2 additional days off for volunteering
Additional health insurance Plan - for you and your loved ones
Life Insurance
Well-being (for Fitness memberships, personal trainings, office equipment etc.)
Mental Health Care – up to 8 sessions annually with a professional Career Coach or Psychotherapist
Digital Food Vouchers
Multisport Card (via payroll deduction)