Information Security Analyst, Trust

Appian - McLean, VA

posted 4 months ago

Full-time - Entry Level
McLean, VA
Professional, Scientific, and Technical Services

About the position

As an Analyst on the Information Security Trust team at Appian, you will play a crucial role in supporting the implementation of a continuously evolving governance, risk, and compliance (GRC) program that underpins our enterprise and products. This position is designed for individuals who are passionate about security and technology, and who thrive in a dynamic environment. You will be responsible for establishing a robust security program by setting security policies and standards that align with applicable industry frameworks. Your efforts will ensure that various groups across the company are not only aware of but also adhere to these security requirements. In this role, you will assess the risk posture of systems and environments, collaborating with teams throughout the organization to ensure that control requirements are implemented in accordance with established security policies and standards. You will oversee control assessments conducted by external assessors and continuously monitor programs to ensure that controls remain effective and any identified gaps are promptly addressed. Your ability to communicate effectively, both verbally and in writing, will be essential as you provide security subject matter expertise across all levels of the organization, catering to personnel with varying technical backgrounds. To succeed in this position, you will need to be ambitious, detail-oriented, and focused on making an impact rather than merely completing tasks. You will be expected to track your work accurately, manage multiple work streams simultaneously, and meet aggressive deadlines while delivering impactful products. Your understanding of security frameworks such as ISO 27001, SOC 2, FedRAMP, and PCI DSS, along with relevant technologies like cloud-based SaaS/PaaS models and modern cloud-native technologies, will be critical in evaluating environments and architectures against compliance requirements. This role also requires the ability to work independently and collaboratively with teams to provide guidance and oversight on compliance matters.

Responsibilities

  • Support the implementation of a governance, risk, and compliance (GRC) program.
  • Establish security policies and standards in alignment with industry frameworks.
  • Ensure adherence to security requirements across various groups in the company.
  • Assess the risk posture of systems and environments.
  • Collaborate with teams to implement control requirements according to security policies.
  • Oversee control assessments from external assessors.
  • Continuously monitor programs to ensure controls are effective and address any gaps.

Requirements

  • B.S./B.A. or greater in a related field of study and/or relevant certifications (e.g. CISSP, CISA, CISM).
  • 2-3+ years of experience in security compliance, governance, risk management, or information assurance.
  • Excellent problem-solving skills and the ability to dissent constructively.
  • Ability to communicate effectively, both verbally and in writing.
  • Ability to track work accurately and handle multiple work streams simultaneously.
  • Ability to execute on established roadmaps.
  • Understanding of security frameworks (e.g. ISO 27001, SOC 2, FedRAMP, PCI DSS).
  • Understanding of cloud-based SaaS/PaaS software delivery models and underlying IaaS (e.g. AWS, Azure, GCP).
  • Ability to evaluate environments against compliance requirements.

Nice-to-haves

  • Experience with modern cloud-native technologies (e.g. Kubernetes, Docker, serverless).
  • Familiarity with operating systems (e.g. Windows, UNIX, Linux).
  • A passion for security and technology.

Benefits

  • Training and development opportunities during onboarding.
  • Continuous learning focus with dedicated mentorship.
  • Growth opportunities including leadership programs and tuition reimbursement.
  • Community involvement through employee-led affinity groups.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service