Compliance Analyst

We are looking for a temporary Compliance Analyst who will be tasked with collaborating with cross-functional teams to ensure compliance with SOC2, CMMC, and other related security frameworks. This role will own and maintain the security of all of the information systems, applications, and data of the organization, and will also be in charge of the ongoing compliance efforts of SimSpace, reporting to the Sr. Manager, Cybersecurity. This temporary position will have a full-time schedule of 40 hours per week for a duration of 6 months, with the potential for extension. This role requires an understanding of information security and project management, as well as the ability to work both autonomously and in a team. The Compliance Analyst will oversee the development and implementation of Governance, Risk and Compliance (GRC) processes and frameworks, identify organizational risks, and identify, define and maintain security documentation. This role will also utilize GRC platforms to monitor compliance and streamline workflows, as well as maintain a centralized repository of compliance evidence for ongoing assessments.

A successful candidate will be skilled in professional communication, along with having solid analytical and critical thinking skills and the ability to successfully take ownership and drive solutions. This team is fast-paced, so effective and collaborative interactions with colleagues, end users, IT leaders, and business stakeholders are critical to ensure success of our projects. The ideal candidate should be an effective change advocate, possessing the ability to understand the impacts of technology transformation, and have experience in project management.

What will you be doing as a Compliance Analyst at SimSpace?

• Vendor Management - conduct security reviews for historical vendors and process new vendors.
  
• Risk Management - perform risk assessments by filling out details, treatment plan, assigning risk scores and other functions.
• Control Tracking - ensure failing controls are updated as necessary with evidence to keep maintain SOC2 compliance.
  
• Audit Preparation - assist in preparing for, and maintaining, compliance against ongoing security audits.
  
• User Access Reviews - perform regularly schedule user access reviews on SimSpace systems
  
• Evidence Library - review, update evidence and assign owners to evidence, link evidence to controls, set renewal dates, etc.
  
• CMMC - review Plan of Action and Milestones (POA&M) and assist in scheduling necessary remediations.
  
• Policies & Processes - review and update existing policies and processes
  
• Vulnerability Management - review scan results, coordinate with stakeholders, and ensure remediation.
  
• Incident Response - review, triage and respond to security alerts and incidents.

What are the qualifications to apply? To be successful as a Compliance Analyst, you need to have:

• Bachelor’s degree in Information Technology, Computer Science, or a related field.
• Minimum of 2 years of experience in IT, information security or related roles.
• Knowledge of information security principles, practices, and technologies, including security architecture, identity and access management, risk management, and security operations.
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, SOC2, CMMC as well as those from NIST, including SP800-53
• Knowledge of compliance platforms, such as Drata or Vanta.
• Professional security certifications such as CISSP, CISM, or CISA are highly desirable.
• Strong communication and collaboration skills, with the ability to communicate complex technical issues to non-technical stakeholders and work with other departments.
• Strong time and project management skills, with the ability to manage multiple projects simultaneously and deliver on time, within budget, and to the required quality standards.
• Strong analytical and problem-solving skills, with the ability to quickly identify and tackle complex technical issues.
• Experience working with Windows, MacOS and Linux based operating systems
• Possess a forward-thinking mindset with a excitement for learning, solving complex problems and getting involved.
• Ability to work on a fast paced, dynamic and multi-faceted team.
• Ability to work a full-time schedule.
• United States Citizenship is required for this role. 

Total Rewards at SimSpace

We’re proud to offer a competitive and comprehensive package designed to support your well-being, growth, and success:

• Compensation. Base pay range: $31-$45/hour, reflecting our confidence in your expertise and impact.
• Health & Wellness. Comprehensive medical, dental, and vision benefits, plus savings plans—coverage starts on day one!
• Mental Health Support. Access to company-paid counseling, coaching, and resources for you and your family through Spring Health.
• Peloton Interactive Wellness Program: Full- and partial- subsidized membership plans and equipment discounts to help you reach your personalized fitness goals.
• Continuous Learning: Access a LinkedIn Learning membership to prioritize your personal and professional development.
• Social Connections: Monthly reimbursements for meaningful connections with teammates through our SocialSpace Community.
• Extra Perks: Legal plan coverage, pet insurance, wellness reimbursements, and more to simplify life’s details.