Job Overview:
We are seeking a skilled and proactive Cyber Compliance Analyst to join our cybersecurity team. In this role, you will be responsible for ensuring the organization's compliance with cybersecurity regulations, frameworks, and best practices. You will work closely with various teams to assess and manage risks, develop policies, and support audit activities to protect sensitive data and maintain robust security posture.

Key Responsibilities:

• Regulatory Compliance: Monitor and ensure adherence to cybersecurity laws, regulations, and industry standards (e.g., GDPR, CCPA, HIPAA, PCI-DSS, NIST, ISO 27001, etc.).
• Risk Management: Conduct risk assessments, identify vulnerabilities, and recommend mitigation strategies to maintain compliance with regulatory requirements.
• Policy Development: Assist in the creation, review, and maintenance of security policies and procedures to align with compliance and risk management objectives.
• Audit and Reporting: Prepare for and support internal and external audits, tracking compliance metrics and ensuring evidence is available for audit purposes.
• Security Awareness: Educate employees and stakeholders on cybersecurity risks, policies, and compliance requirements through training and awareness programs.
• Incident Management: Collaborate with the security team to address non-compliance incidents and breaches, investigating the root cause and implementing corrective actions.
• Continuous Improvement: Keep up to date with evolving cybersecurity threats, regulations, and compliance requirements, making recommendations for improvement.
• Cross-functional Collaboration: Work closely with IT, legal, risk, and business teams to integrate compliance requirements into day-to-day operations and projects.

Required Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, or related field.
• Proven experience in a cybersecurity or compliance role, with knowledge of industry regulations and frameworks.
• Familiarity with key cybersecurity frameworks such as NIST, ISO 27001, PCI-DSS, HIPAA, GDPR, and other relevant standards.
• Strong understanding of risk management principles and practices.
• Experience with compliance auditing and reporting.
• Knowledge of security technologies, tools, and best practices.
• Ability to analyze and interpret regulatory requirements and translate them into actionable steps for the organization.

Desired Skills:

• Cybersecurity certifications such as CISSP, CISA, CISM, or similar certifications are a plus.
• Strong analytical, problem-solving, and attention-to-detail skills.
• Excellent communication and interpersonal skills with the ability to present complex compliance topics to diverse audiences.
• Ability to work independently and as part of a team in a fast-paced environment.