Information Security Analyst
New
D
Duetto ResearchHospitality Technology
Location: CroatiaFull-TimeMiddle
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 2–4+ years
- Required Skills
- SaaS
Requirements
- 2-4+ years of experience in security GRC, IT audit, compliance, or risk management
- Familiarity with SOC 2, ISO 27001, NIST CSF, and access review processes
- Experience using Vanta or a comparable GRC platform
- Strong documentation, follow-up, and project tracking skills
- Ability to work with technical teams and understand security evidence
- Strong written communication skills for RFPs and policies
- Experience in SaaS environments preferred
- Familiarity with AWS, MDM, endpoint security, and vulnerability management is a plus
- Basic understanding of GDPR, DPA, and subprocessor management is a plus
Responsibilities
- Administer and maintain Vanta or equivalent GRC platform
- Collect and maintain SOC 2 Type 2 and ISO evidence
- Coordinate access reviews across production and SaaS systems
- Maintain governance policies, risk registers, and risk treatment trackers
- Support vendor security reviews and third-party risk assessments
- Draft responses for RFPs and sales security questionnaires
- Coordinate phishing simulations and security awareness training
- Assist with incident response documentation and audit evidence requests
View Full Description & ApplyYou'll be redirected to the employer's site
