Our client is seeking a detail-oriented and driven Security Analyst to join their IT team. In this role, the analyst will play a key part in strengthening customer trust by responding to security questionnaires, supporting external audits, and helping maintain compliance with leading industry standards such as SOC 2 and ISO 27001.
This position offers the opportunity to collaborate across multiple departments—including engineering, legal, sales, and executive leadership—to ensure that the organization’s security posture is not only well communicated but also continuously improved. It's an exciting chance to contribute to a company where security is a core pillar of customer confidence and business success.
Main responsibilities:
* Respond promptly and accurately to customer and vendor security questionnaires, due diligence requests, and RFPs, ensuring timely support throughout the sales and procurement processes.
* Maintain and continuously update reusable documentation—including CAIQ, SIG, security whitepapers, and policy summaries—to improve efficiency in future responses.
* Oversee the management of Sprinto, the organization’s compliance automation platform, ensuring its data remains current and aligned with compliance objectives.
* Support the planning, execution, and documentation of evidence for third-party audits, including but not limited to SOC 2 and ISO 27001 assessments.
* Track remediation actions identified through audits or internal assessments, and assist in coordinating their timely resolution.
* Work closely with cross-functional teams to document and maintain up-to-date security controls, internal policies, and operational procedures.
* Stay informed on evolving regulatory requirements, compliance obligations, and security best practices to help enhance the organization’s security posture.
* Maintain a well-organized inventory of compliance artifacts, certifications, and attestations for internal and external reference.
* Participate in internal risk assessments and conduct vendor security evaluations to uphold the organization’s third-party risk management standards.
* Contribute to company-wide security awareness efforts and training programs, fostering a culture of security across all departments.
Core skills/experience:
* 5+ years of experience in information security, security compliance, GRC, or related fields.
* Familiarity with security frameworks and standards such as SOC 2, ISO 27001, NIST, or CIS.
* Strong written communication skills with the ability to clearly explain technical concepts to
* non-technical stakeholders.
* Experience completing security questionnaires or responding to customer compliance inquiries.
* Detail-oriented and organised, with the ability to manage multiple requests and deadlines.
* Proactive, collaborative, and comfortable working across departments.
* Bonus: experience with tools like Sprino or similar GRC platforms.
* Full Professional Level of English (Must)
What's on offer?
* Permanent contract
* Full remote working model
* Flexible hours
* Great team of people
Our recruitment process?
* Step 1: Interview with one of our recruiters to get to know you better
* Step 2: Interview with the Hiring Manager
* Step 3: Technical Test
* Step 4: Technical Interview