Analyst - Security Customer Assurance

Job Description

In This Role, You Will: Support the sales process by participating in customer-initiated security due diligence and/or vendor security audits and helping to respond to security questionnaires and documentation requests from customers Participate in internal security assessments and security reviews Work with stakeholders to address and mitigate any open findings, and prepare customer communications against them, as required Support development of and monitor progress on security risk treatment plans by risk owners; support regular risk and progress reporting to leadership stakeholders Support development of technical solutions and processes to automate or streamline repeatable security risk assessment, audit, customer questionnaire response activities and workflows Assist with maintenance of information security program documentation consisting of information security policies, standards, and guidelines, and coordinating management ratification of policies and standards at regular intervals Participate in improving the overall Security culture across Cvent; contribute to employee security awareness campaigns and educational activities to address areas of potential risk and/or gaps in compliance Collaborate with internal stakeholders to maintain an up-to-date knowledge base of all Cvent's product functionalities, along with their respective security and compliance posture Measure, track and report KPIs to senior management Heres What You Need: 4-8 years of demonstrable experience in customer assurance, and good interpersonal communication skills with experience and confidence in collaborating with internal and external partners and stakeholders to develop productive relationships and achieve positive security risk management outcomes Ability to learn quickly with a willingness to take ownership for new projects and learning new technologies and methodologies Good understanding of industry standards for compliance such as ISO 27001:2013, PCI DSS, and SSAE 18 SOC 1 / SOC 2 attestation standards Basic understanding of risk assessment methodologies and best practices Ability and willingness to produce and maintain documentation and reports Proficiency with productivity and collaboration tools, such as Microsoft Office, Slack, Box, and Zoom Excellent presentation and written communications skills and a team-focused attitude Must be organized, detail-oriented, and possess the ability to multi-task in a dynamic, fast-changing, entrepreneurial environment