Security Compliance Analyst

Yoh has an exciting opportunity for a Security Compliance Analyst with expertise audit and risk assessments . The client is a large insurance carrier in California. The role is remote but will require an appearance at a local office occasionally. The preference of location is in Pleasanton or Vacaville California , but the candidate can be located within 45 minutes of any other location. The candidate must sit in California. You will be working with executives to drive compliance standards and develop the security posture of the organization. See below for complete job responsibilities and requirements. If after reviewing, you are interested in learning more about this, or other opportunities in Biotech, please apply with your updated resume ASAP. Title: Security Compliance Analyst Salary : $65-85 an hour Location: Vacaville or Pleasanton, CA Type: Hybrid, mostly remote with occasional travel The Security Analyst role involves a variety of tasks focused on boosting security within the organization: Conducting thorough Risk Assessments to identify potential risks. Providing expert security advice, analyzing security reports, and suggesting ways to reduce risks across different programs. Creating and enforcing security policies based on industry standards, assigning risk ratings to each control. Training team members on security topics like Risk Assessments, Business Requirements Documents (BRDs), Technical Design Documents (TDDs), and handling security issues. Developing and managing procedures for Risk Assessments, BRDs, TDDs, and addressing security problems. Analyzing complex Security Incident Response (SIR) tickets as needed. Representing Information Security matters in meetings. Taking on roles in Information Security projects as assigned. Performing other duties as needed. For the Risk Consultant position, ideal candidates should have: Strong analytical and critical thinking skills. Excellent verbal and written communication skills for all levels of the organization. Ability to present to senior management and executives. Knowledge of security frameworks like NIST-800 series, PCI, ISO 27001/27001, ITIL, and COBIT. Expertise in security project management. Self-motivation and proactive collaboration with team members. Experience in regulated environments and managing information risks across different stakeholders. Awareness of emerging security risks. Ability to explain complex issues and solutions to technical and non-technical audiences. Strategic thinking and influencing skills. Experience managing multiple projects simultaneously. At least 5 years of information security experience. Mandatory possession of CISA, CISM, and/or CISSP Certification. Note: Any pay ranges displayed are estimations. Actual pay is determined by an applicant's experience, technical expertise, and other qualifications as listed in the job description. All qualified applicants are welcome to apply. Yoh, a Day & Zimmermann company, is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Visit https://www.yoh.com/applicants-with-disabilities to contact us if you are an individual with a disability and require accommodation in the application process. For California applicants, qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. All of the material job duties described in this posting are job duties for which a criminal history may have a direct, adverse, and negative relationship potentially resulting in the withdrawal of a conditional offer of employment.