Security and Compliance Analyst - San Francisco, United States - Apex Systems

    Apex Systems
    Apex Systems San Francisco, United States

    2 weeks ago

    Apex Systems background
    Description
    Security and Compliance Analyst
    3 month contract + extensions
    100% Remote
    Enterprise Retail Client
    Start ASAP
    The candidate will have experience & knowledge of Information Security Compliance Management and Quality Management and will be responsible for leading, maturing and reporting on Information Security GRC programs . The successful individual has a project management, change management and/or reporting background, with a focus on end-to-end process design and stakeholder management. The candidate has a strong sense of personal accountability, values collaboration and partnership and can be a change driver, successfully navigating a complex organization.
    What You'll Do:
    • Member of Information Security Governance, Risk and Compliance GRC Team.
    • Responsible for leading, maturing and reporting on the following Information Security Programs:
      • Information Security Policies & Standards across all Information Security domains.
      • Privacy Data Protection in partnership with Legal Privacy Team.
      • Security Awareness & Training across entire Gap Inc. organization.
      • Information Security Third-party Risk Management TPRM in partnership with Information Security Product Security and other stakeholders in contract lifecycle management CLM.
    Competencies:
    • Broad comprehension across all Information Security Domains.
    • Familiarity with cybersecurity frameworks, such as NIST, ISO 27001, SOC2, PCI-DSS.
    • Disciplined in Compliance Management & Quality Management.
    • Subject matter expert of Third-Party Risk and Privacy Management process and tools.
    • Proficient in Reporting & Analytics in Excel/Smartsheet/PowerPoint.
    • Familiarity with contract lifecycle management CLM and IT software.
    • Technical writing and document version control.
    • Audit Preparation & Response.
    Who You Are:
    • Information Security Analyst, Compliance Manager, Project Manager, Risk Manager or Architect.
    • Significant experience in Information Security GRC functions.
    • Passionate about compliance management and continual improvement.
    • Highly organized, patient, dedicated and resilient.
    • Capable of influence, collaboration, and compromise.
    • Agility in adapting to different enterprise software.
    • Excellent interpersonal, verbal and written and communication skills.
    • Strategic thinking, strong analytical and problem-solving skills.
    • Strong execution ability and a sense of urgency.
    Compliance Manager - InfoSec
    3 month contract + extensions
    100% Remote
    Enterprise Retail Client
    Start ASAP
    The candidate will have experience & knowledge of Information Security Compliance Management and Quality Management and will be responsible for leading, maturing and reporting on Information Security GRC programs . The successful individual has a project management, change management and/or reporting background, with a focus on end-to-end process design and stakeholder management. The candidate has a strong sense of personal accountability, values collaboration and partnership and can be a change driver, successfully navigating a complex organization.
    What You'll Do:
    • Member of Information Security Governance, Risk and Compliance GRC Team.
    • Responsible for leading, maturing and reporting on the following Information Security Programs:
      • Information Security Policies & Standards across all Information Security domains.
      • Privacy Data Protection in partnership with Legal Privacy Team.
      • Security Awareness & Training across entire Gap Inc. organization.
      • Information Security Third-party Risk Management TPRM in partnership with Information Security Product Security and other stakeholders in contract lifecycle management CLM.
    Competencies:
    • Broad comprehension across all Information Security Domains.
    • Familiarity with cybersecurity frameworks, such as NIST, ISO 27001, SOC2, PCI-DSS.
    • Disciplined in Compliance Management & Quality Management.
    • Subject matter expert of Third-Party Risk and Privacy Management process and tools.
    • Proficient in Reporting & Analytics in Excel/Smartsheet/PowerPoint.
    • Familiarity with contract lifecycle management CLM and IT software.
    • Technical writing and document version control.
    • Audit Preparation & Response.
    Who You Are:
    • Information Security Analyst, Compliance Manager, Project Manager, Risk Manager or Architect.
    • Significant experience in Information Security GRC functions.
    • Passionate about compliance management and continual improvement.
    • Highly organized, patient, dedicated and resilient.
    • Capable of influence, collaboration, and compromise.
    • Agility in adapting to different enterprise software.
    • Excellent interpersonal, verbal and written and communication skills.
    • Strategic thinking, strong analytical and problem-solving skills.
    • Strong execution ability and a sense of urgency.
    EEO Employer

    Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at [email protected] or

    Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.