The Security Analyst will maintain the confidentiality, integrity and availability of sensitive Company information. This role may also be assigned responsibilities within a diverse set of security subject areas, such as: HIPAA and/or Sarbanes-Oxley (SOX) compliance, SOC2 and SOC1, ISO 27001, risk management including risk methodology and third-party vendor assessments, business resiliency preparedness, PII data protection, privacy, security awareness, and identity and access management. The Security Analyst will frequently collaborate with others, work independently with limited direction, or in large groups, and communicate facts and results to peers, leaders, and management. This role will leverage knowledge of security standards, processes, procedures and solutions and support security functions.
Does this sound like you?
- You have a process improvement mindset and take pleasure in seeing how your contribution impacts the goals of the organization.
- You are a self-starter who proactively identifies risks and have the tenacity to see remediation through completion.
- You like working in a fast-paced and technology adept environment on a team that values positivity and collaboration.
- You are a life long learner who enjoys rolling up their sleeves and solving problems.
Why join SPS?
We solve retail supply chain problems by cutting through inefficiency with innovation and automation. At SPS we empower retailers, suppliers, distributors, grocers, and logistics partners to work better together with our people, our process, and our tech products. We have the world’s largest retail network, and we don’t just lead the industry, we are the industry.
At SPS, we believe every employee makes a difference. We ensure employees have the tools, resources, and training to explore new ideas and execute them. Our success comes from playing as a team and always playing to win. Careers don’t just grow here, they’re made here.
What is the day-to-day like?
- Collaborate with stakeholders across the organization to understand processes, procedures, applications, and technologies
- Identify opportunities for alignment and continuous improvement in support of company and security objectives
- Work directly with internal and external stakeholders to effectively communicate information on SPS security controls
- Facilitate external and customer security audits and assessments
- Drive application and technology compliance with corporate and regulatory policies/standards & industry best practices
- Leverage security standards, processes, procedures and solutions to build and mature security controls
- Participate in project work; perform security specific project tasks; lead work streams
- Lead and coordinate the activities of others within nature and scope of IT Security
What experience and skills do you need?
- Minimum 2 years of experience with Bachelor’s degree in related business or technical area, or an equivalency of education and work experience
- Strong communication and time management skills, ability to learn quickly
- Extensive experience identifying problems and resolving them
- Familiarity and use of GRC tools risk management tools and methods
- Familiarity of IT risk & security frameworks such as SOC 1/2, NIST, ISO 27001, CIS, or others
- Familiarity with cyber risk management documentation and processes such as control libraries, issues management, risk treatment plans, etc
Nice to haves?
- Certifications & Licenses: One or more industry certification - CISSP, CISM, CISA, GIAC, CCSP
- Experience working with technology and software; strong business acumen
- Working knowledge of broader cybersecurity domains such as IAM, security operations, security engineering, cloud security, or others
- Network, system or application design, implementation or support
- System administration with experience across multiple platforms and applications
- Experience with security standards
SPS Commerce offers a comprehensive package of benefits including health, dental, vision, disability, and life insurance, paid time-off, 401(k), health and flexible spending accounts, stock purchase plan and more.
** EOE including disability / veteran **