Home Cybersecurity Analyst – Governance, Compliance, and Risk

Website SimplePart

About SimplePart:

SimplePart builds smart world-class eCommerce and Electronic Parts Catalog (EPC) solutions for the world’s leading automakers. If you’ve bought an OEM car part online from a car dealer in the last decade, you likely used SimplePart’s technology. Our marketing, platform and data connects more than 9 million monthly online shoppers to the parts, accessories and service they need to keep their cars running.

SimplePart aspires to reflect the diverse audiences we serve, by building a community of rich and diverse perspectives, ideas, backgrounds and cultures. We’re looking for fresh ideas from all areas.

We are and will always be a data and engineering company – our products handle information at massive scale, extending well beyond off-the-shelf eCommerce. Our teams are fast-paced, versatile and ready to take on technology’s greatest challenges and make an impact on millions of users.

The Network and Security Team:

On SimplePart’s Network and Security Team you have the chance to brainstorm, collaborate and advance within a growing team of technology enthusiasts. The team works with a broad range of technologies and strives to constantly expand their knowledge base in an ever-changing industry.  In this role, you will be able to see very quickly how your contributions benefit both the team and the organization.

We are looking for someone who is passionate about network and security related topics as well as someone who has a passion for technical writing, planning, organization, and technology. You will be working alongside a tight knit team of System Administrators and Technical Staff to improve process and documentation.

The Role:

As a Cybersecurity Analyst, you will be assisting in identifying, developing, implementing, and maintaining policies and standards across SimplePart. You will also be the main point of contact for security audits through organization, planning, strategy, and information gathering. You’ll have the opportunity to partner with internal and external stakeholders to bring efficiency and process improvements into the annual audits as well as ongoing team needs.  You will be responsible for documentation within the team, including both the selection and implementation of a team wiki.  In this role, you will also need to be able to take complex technical topics and be able to summarize them in a comprehensive way that will lead to building repeatable processes.

Responsibilities:

Define, publish, and maintain Information Security policies, standards and guidelines.
Align security and documentation practices to frameworks such as PCI and ISO 27001
Coordinate the execution of security compliance and assessment control initiatives.
Act as a liaison to the business and IT groups and assist them in the implementation of data security, compliance requirements, and information security technologies/processes.
Secure Compliance certifications with external auditors based on a certification roadmap
Maintain standard compliance documentation to support customer and compliance audits and assessments
Perform pre-assessments to preview the readiness for the audit(s)
Manage exception management processes
Integrate security specifics into Azure Devops  by working with stakeholders and define deliverables in every stage
Provide regular compliance reporting
Own and manage team wiki as well as additional team documentation

Qualifications:

1+ years of creating Information Security Governance documentation, technical experience in the security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience.
Strong understanding of PCI and ISO control frameworks.
Strong interpersonal skills with the ability to work effectively in a matrixed organization.
Strong project management skills, technical writing and presentation skills
Exceptional analytical ability, communication and project management skills, and the ability to work effectively with all levels within the organization, IT staff, and vendors.
Easily adapt to a rapidly evolving, faced paced, cyber security environment as it relates to changes in strategy or risk.
Flexible, agile & open minded with a positive attitude
Experience with communication and project management tools such as Asana, Azure, Confluence, G-Suite, Slack

We offer our employees:

Company paid health/dental/vision/life/disability benefits
Competitive pay
Medical FSA
Dependent Care FSA with company contribution
401k plan with company match
Maternity/Paternity leave
Tuition assistance
Flexible vacation
Vacation bonus
Commuter benefits
Friday lunches
Dog friendly office

SimplePart is an established, solidly profitable company headquartered in Downtown Atlanta’s Fairlie Poplar District.  If you are interested in joining our collaborative group, please apply below. In your application, please be sure to include a cover letter that gives us an idea of your personality, who you are and what you’re all about. We look forward to hearing from you! Be a part of a team of ambitious, lifelong learners who enjoy making an impact and challenging themselves each day.

SimplePart is an equal opportunity employer, and we value diversity at our company. We don’t discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Candidates must be authorized to work in the U.S. without sponsorship. No recruiters, please.

Salary Range: $70,000 – $90,000

To apply for this job please visit grnh.se.