Information Security Compliance Analyst

TL;DR

Information Security Compliance Analyst: Managing annual SOC reporting initiatives and third-party risk assessments with an accent on regulatory compliance and vendor security controls. Focus on coordinating with internal stakeholders and auditors to maintain robust security awareness and risk management frameworks.

Location: Must be based in the United States

Salary: $76,000 - $100,000

Company

hirify.global provides end-to-end technology solutions for the social good industry, supporting over 20,000 customers including nonprofits and Fortune 100 companies.

What you will do

• Lead annual SOC reporting initiatives across multiple products.
• Perform technical risk assessments of third-party suppliers and maintain vendor risk registers.
• Coordinate with control owners and auditors to ensure timely completion of compliance projects.
• Manage the playbook for reporting high-risk events involving security and compliance.
• Assist in maintaining security awareness training, role-based training, and phishing simulation programs.
• Conduct user activity audits as required.

Requirements

• Must be authorized to work in the US without sponsorship.
• 3+ years of experience in risk and compliance activities.
• Strong understanding of SOC and ISO frameworks.
• Proven project management experience.
• Excellent verbal and written communication skills.
• Proficiency with GRC, ticketing, and project management software.

Nice to have

• Information systems security certifications such as CRISC, CISA, CISSP, CISM, GSEC, GCFA, GCTI, or CCSP.

Culture & Benefits

• Inclusive and equitable culture focused on social impact.
• Comprehensive benefits package supporting health, well-being, and professional growth.
• Opportunity to work with AI-powered tools for social good.
• Commitment to diversity and equal opportunity employment.