Senior Compliance Analyst

3 Weeks ago • 3 Years +

Job Summary

Job Description

The Senior Compliance Analyst at Domo will be responsible for evaluating and supporting compliance initiatives. This includes information security, policy, risk management, data classification, vendor management, privacy, audit, and awareness. The role involves designing, developing, and implementing information security policies, assessing compliance, performing security assessments, developing and improving processes, and providing guidance on security control implementation. The analyst will also assist in developing policies and procedures and evaluating risks and controls to support compliance initiatives like FedRAMP, ISO 27001, and HITRUST. This requires a good understanding of information security best practices, strong security knowledge, and excellent communication skills.
Must have:
  • Document security compliance control implementations with engineering teams.
  • Collect technical architecture and security policies from engineering teams.
  • Perform gap analysis of policies and practices against regulatory standards.
  • Perform risk assessments of technology infrastructure and operational processes.
  • Build and maintain a controls matrix for compliance frameworks.
  • Assist in establishing rules for risk analyses and security assessments.
  • Assist in and develop information security training and awareness programs.
  • Perform vendor security assessments and interface with vendors.

Job Details

 

COMPANY OVERVIEW

Domo's AI and Data Products Platform lets people channel AI and data into innovative uses that deliver a measurable impact. Anyone can use Domo to prepare, analyze, visualize, automate, and build data products that are amplified by AI.

POSITION SUMMARY

The Senior Compliance Analyst is a key member of Domo’s Compliance team responsible for evaluating and supporting compliance initiatives covering information security, policy, risk management, data classification, vendor management, privacy, audit, and awareness. This position assists other members of the Compliance team with designing, developing and implementing information security policies and documentation, assessing compliance with existing policies, and overall compliance with security-related requirements from customers.

Also, this position assists with performing security assessments and monitoring and tracking compliance status; developing and improving processes, procedures, standards, and guidance; providing guidance on security control implementation; and defining and implementing process improvement and maturity initiatives. 

The position will also be responsible for assisting in developing policies and procedures and evaluating risks and controls to support the company’s Federal Information Security Management Act (FISMA) Security Accreditation (FedRAMP), ISO 27001, ISO 27018, SSAE 18, HITRUST, and other regulatory and compliance initiatives. Success in this role requires a good understanding of information security best practices, strong security knowledge, ability to understand and communicate risk and controls, organization, planning, good communication and writing skills.

KEY RESPONSIBILITIES

  • Work with internal stakeholder engineering teams to document the implementation of security compliance control implementations for technical, management, and operational requirements
  • Collect and document technical architecture, operational processes and security policies from multiple internal engineering teams
  • Assist with gap analysis of current policies, procedures and practices as they relate to established guidelines outlined by NIST, FISMA, HIPAA, and other regulatory standards
  • Perform risk assessments of technology infrastructure and operational processes and controls for assigned areas
  • Build and maintain the controls matrix, in alignment with multiple compliance frameworks, including SOC 1 & SOC 2, ISO 27001, ISO 27018, HITRUST, and HIPAA
  • Assist in establishing rules for risk analyses and security assessments which includes addressing controls defined by NIST SP 800-53 for both business operations and technical implementations throughout the company
  • Assist in and develop information security training and awareness programs
  • Perform vendor security assessments and interface with vendors on occasion

JOB REQUIREMENTS

  • Bachelor's degree in Computer Science, Information Technology or related field
  • Minimum of 3 years’ experience in compliance, audit, and/or information security
  • CISSP, CISA, CCSA or equivalent certification required
  • Familiarity with enterprise-level compliance tools such as ServiceNow, Archer or other industry equivalent software
  • Knowledge and experience in NIST SP 800-53 Rev 4, ISO 27001, ISO 27018, SSAE 18, HIPAA and HITRUST
  • Experience in cloud based environments for production applications, including Amazon Web Services, Microsoft Azure or other large scale cloud deployment
  • Understanding of risks and controls as they pertain to information security and data privacy
  • Interpersonal skills to work as a team member and as a liaison
  • Excellent verbal communication, presentation, organizational and planning skills

LOCATION: American Fork, UT 

BENEFITS: https://www.domo.com/company/careers/culture 

Domo is an equal opportunity employer.

#LI-BD1

#LI-Onsite

Similar Jobs

Take-Two Interactive - Information Security Operations Analyst

Take-Two Interactive

Austin, Texas, United States (On-Site)
2 Weeks ago
Veeam Software - Site Reliability Engineer

Veeam Software

Pune, Maharashtra, India (Hybrid)
3 Weeks ago
Ansys - Senior DevOps Engineer

Ansys

Ismaning, Bavaria, Germany (Hybrid)
3 Weeks ago
Marsh McLennan - Senior software engineer (Node.js & Angular)

Marsh McLennan

Cluj-Napoca, Cluj County, Romania (Hybrid)
3 Weeks ago
TFL Group - Software Engineer II

TFL Group

Overland Park, Kansas, United States (On-Site)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Rocket - Principal Consultant

Rocket

Campbell, California, United States (Remote)
1 Week ago
Insight Software - Software Engineer (Full stack - C# & ReactJS)

Insight Software

Bengaluru, Karnataka, India (On-Site)
1 Month ago
endava - Data Engineer (Azure)

endava

Bogotá, Bogota, Colombia (On-Site)
1 Week ago
HCL Tech - Kubernetes Technical Lead

HCL Tech

California, United States (On-Site)
2 Weeks ago
Glean - Technical Support Engineer

Glean

Bengaluru, Karnataka, India (On-Site)
3 Weeks ago
SciPlay - Senior Software Engineer

SciPlay

Cedar Falls, Iowa, United States (Hybrid)
4 Months ago
Glean - Solutions Architect - ANZ / Singapore region customer hours.

Glean

Bengaluru, Karnataka, India (On-Site)
6 Months ago
Neolytix - Team Lead Full Stack Developer - Voice Transcription Platform

Neolytix

Gurugram, Haryana, India (On-Site)
1 Month ago
The Walt Disney Company - Principal Software Engineer

The Walt Disney Company

Seattle, Washington, United States (On-Site)
1 Month ago
Maximum Games - Senior Video Game Backend Developer

Maximum Games

Bucharest, Bucharest, Romania (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in American Fork, Utah, United States

singularity 6 - Art Application Drop Box

singularity 6

United States (Hybrid)
1 Year ago
rivos - Platform FPGA Design

rivos

Santa Clara, California, United States (On-Site)
8 Months ago
Coherent corp. - Senior Test Engineer

Coherent corp.

Warren, New Jersey, United States (On-Site)
2 Weeks ago
TALA - Manager, User Acquisition

TALA

United States (Remote)
1 Month ago
Moonbug Entertainment - Senior Designer

Moonbug Entertainment

California, United States (On-Site)
2 Months ago
Elsewhere - Audio Lead (CONTRACT)

Elsewhere

San Francisco, California, United States (Remote)
5 Months ago
lifechruh - Head of Creative

lifechruh

Edmond, Oklahoma, United States (On-Site)
1 Month ago
Salesforce - Corporate Counsel, Product Legal

Salesforce

Chicago, Illinois, United States (On-Site)
1 Week ago
SSC Technologies - Geneva Consultant

SSC Technologies

Florida, United States (Hybrid)
1 Week ago
Netflix - Ad Sales Learning Enablement Manager (UCAN)

Netflix

New York, New York, United States (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

American Fork, Utah, United States (On-Site)

Tokyo, Japan (On-Site)

American Fork, Utah, United States (On-Site)

Tokyo, Japan (On-Site)

Tokyo, Japan (On-Site)

Pune, Maharashtra, India (On-Site)

Pune, Maharashtra, India (Hybrid)

American Fork, Utah, United States (On-Site)

American Fork, Utah, United States (On-Site)

Tokyo, Japan (On-Site)

View All Jobs

Get notified when new jobs are added by Domo

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug