Senior Security Analyst with Full Professional Level of English

Our client is seeking a detail-oriented and driven Security Analyst to join their IT team. In this role, the analyst will play a key part in strengthening customer trust by responding to security questionnaires, supporting external audits, and helping maintain compliance with leading industry standards such as SOC 2 and ISO 27001.

This position offers the opportunity to collaborate across multiple departments-including engineering, legal, sales, and executive leadership-to ensure that the organization's security posture is not only well communicated but also continuously improved. It's an exciting chance to contribute to a company where security is a core pillar of customer confidence and business success.

Main responsibilities:

• Respond promptly and accurately to customer and vendor security questionnaires, due diligence requests, and RFPs, ensuring timely support throughout the sales and procurement processes.
• Maintain and continuously update reusable documentation-including CAIQ, SIG, security whitepapers, and policy summaries-to improve efficiency in future responses.
• Oversee the management of Sprinto, the organization's compliance automation platform, ensuring its data remains current and aligned with compliance objectives.
• Support the planning, execution, and documentation of evidence for third-party audits, including but not limited to SOC 2 and ISO 27001 assessments.
• Track remediation actions identified through audits or internal assessments, and assist in coordinating their timely resolution.
• Work closely with cross-functional teams to document and maintain up-to-date security controls, internal policies, and operational procedures.
• Stay informed on evolving regulatory requirements, compliance obligations, and security best practices to help enhance the organization's security posture.
• Maintain a well-organized inventory of compliance artifacts, certifications, and attestations for internal and external reference.
• Participate in internal risk assessments and conduct vendor security evaluations to uphold the organization's third-party risk management standards.
• Contribute to company-wide security awareness efforts and training programs, fostering a culture of security across all departments.

Core skills/experience:

• 5+ years of experience in information security, security compliance, GRC, or related fields.
• Familiarity with security frameworks and standards such as SOC 2, ISO 27001, NIST, or CIS.
• Strong written communication skills with the ability to clearly explain technical concepts to
• non-technical stakeholders.
• Experience completing security questionnaires or responding to customer compliance inquiries.
• Detail-oriented and organised, with the ability to manage multiple requests and deadlines.
• Proactive, collaborative, and comfortable working across departments.
• Bonus: experience with tools like Sprino or similar GRC platforms.
• Full Professional Level of English (Must)

What's on offer?

• Permanent contract
• Full remote working model
• Flexible hours
• Great team of people

Our recruitment process?

• Step 1: Interview with one of our recruiters to get to know you better
• Step 2: Interview with the Hiring Manager
• Step 3: Technical Test
• Step 4: Technical Interview