Analyst, Security Compliance & Assurance

Posted 2024-10-29

💎 Seniority level: Middle, 3+ years

📍 Location: USA

💸 Salary: 139050 - 154500 USD per year

🔍 Industry: Cryptocurrency and Blockchain

🗣️ Languages: English

⏳ Experience: 3+ years

🪄 Skills: Project ManagementCybersecurityCommunication SkillsProblem Solving

3+ years of security/IT compliance or equivalent experience.
BA or BS in a technical field or equivalent experience.
Demonstrated project management experience.
Hands-on experience with implementing, reviewing, or auditing security frameworks such as SOC 1, SOC 2, ICFR/SOX, and/or NIST.
Prior experience working closely with auditors and/or external regulators.
Experience with compliance initiatives from start to finish.
Outstanding written and spoken communication skills.
Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations with light supervision.
Ability to multitask, prioritize work, and meet deadlines in a fast-paced environment.
Focus on precision and accuracy, and the drive to clarify ambiguity.
Customer service orientation with a problem-solving approach.
Successful demonstrated experience managing and working with internal cross-functional teams and product engineering groups.

Maintain an active pulse on Coinbase’s customers’ security related concerns to inform security and product strategy.
Facilitate external audit activities including coordination of audit walkthroughs and fulfillment of evidence requirements.
Assist in regulatory security requirement gap assessments.
Perform regulatory requirement mapping for control requirements.
Conduct, design, and implement testing over security controls.
Identify and analyze process gaps, develop remediation recommendations, and track to completion.
Work closely with internal and external auditors to educate them and achieve compliance over technology control environments.
Communicate progress, escalations, and issue resolutions to management and team stakeholders.
Create procedural documentation, including training materials or process documentation.
Manage responses to customer inquiries, including contributing to Request for Proposals (RFP), automating responses to customer security inquiries, and diligence assessments.