OutSystemsRemote
Senior Analyst, Security Strategy – Assurance
United States
Full Time
2 hours ago
Visa Sponsor
Key skills
CloudSaaSStakeholder ManagementRisk ManagementCommunicationCustomer SuccessSalesCloud Security
About this role
Role Overview
- Act as a key operator for the company’s security compliance initiatives
- Lead the operational execution of compliance programs supporting certifications such as SOC 2, ISO 27001, PCI, HIPAA, and regional regulatory frameworks
- Coordinate activities required to achieve and maintain security certifications
- Ensure compliance milestones and program deliverables are executed on schedule
- Serve as a primary coordinator for internal and external audits
- Plan and coordinate audit preparation activities with internal teams
- Manage audit evidence collection and validation
- Serve as a key liaison between control owners and external auditors
- Track remediation plans and ensure timely closure of control deficiencies
- Help operational teams implement security and compliance requirements effectively
- Educate process and control owners on their responsibilities within the security control framework
- Provide guidance on implementing controls efficiently in engineering and operational environments
- Facilitate alignment between security requirements and operational processes
- Support trust initiatives with customers and partners
- Respond to customer security questionnaires and due diligence requests
- Support the Sales and Customer Success teams in articulating OutSystems' security and compliance posture
- Maintain visibility into the organization’s compliance posture
- Monitor compliance with security policies and established control frameworks
- Track control implementation and evidence status within the GRC platform
- Identify trends, risks, and improvement opportunities within compliance programs
- Contribute to improving the scalability and effectiveness of compliance programs
- Identify opportunities to streamline evidence collection, audit preparation, and control monitoring
- Improve documentation, processes, and automation within compliance workflows
- Support the evolution of the company’s control framework and GRC platform usage
Requirements
- Bachelor’s degree in Computer Science, Information Security, or related field
- 4–7 years of experience in security compliance, audit, or risk management
- Experience supporting security certification programs such as SOC 2 or ISO 27001
- Familiarity with cloud security and SaaS operating environments
- Strong program coordination and stakeholder management skills
- Excellent written and verbal communication skills
- Experience using GRC tools and compliance management platforms
- Preferred Qualifications: Professional certifications such as CISA, CISSP, CISM, or ISO 27001 Lead Implementer/Auditor
- Experience with PCI DSS, HIPAA, or regional compliance frameworks
- Experience working with globally distributed teams
Tech Stack
- Cloud
Benefits
- Real growth opportunities
- Structured programs designed to scale expertise
- Professional Development Fund and Internal Mobility Program
- Inclusive culture
- Collaborate with enterprise software legends