Who We Are:
Bandwidth lives for innovation! Our technology powers brands like Google, Microsoft, GoDaddy, Arlo, Netgear, Zoom, Rover and more of the most exciting leaders in technology. Our intelligent voice, messaging, 9-1-1 access, and phone number services all backed by Bandwidth's own nationwide, all-IP voice networkallow us to power the way people communicate, connect, and do business.
At Bandwidth, your music matters when you are part of the BAND. We celebrate differences and encourage BANDmates to be their authentic selves. #jointheband
What We Are Looking For:
The Security Compliance Analyst core function is a supporting and/or primary role for security related audits and audit tasks. The Analyst is expected to have audit knowledge and auditing experience of common security controls for compliance needs. Focusing on audits and reviews of users, access, roles, privileges, and permissions across complex IT environments. Secondary focus includes involvement in the maintenance and/support of Bandwidth's ISMS including policies, standards, baselines, guidelines and procedures as well as assisting with assessments. In this role, you are expected to be aware of the enterprise's security goals as established by its stated policies, procedures and guidelines. You will actively work towards upholding those goals for Bandwidth, and interface with peers in security and information technology departments.
What You'll Do:
Conduct, and document security compliance assessments based on a variety of standards.
Assist with internal and external audits to support of the Information Security program.
Ability to work with multiple teams to drive reduction in vulnerabilities and improve compliance
Perform internal audits to validate completeness and accuracy of the ISMS and security program.
Support internal audits of contractual and policy controls to validate effectiveness and compliance.
Perform user access reviews for IAM/PAM, access audits, and summary reporting on a recurring basis.
Develop remediation and corrective actions as driven by audit results towards compliance within the organization.
Help maintain the ISMS including review of information security controls and documentation.
Assist with information security awareness, training, educational material and related records
What You Need:
Degree in an IT or Information Security discipline or other equivalent combination of education and/or experience that is focused on IT Security, Risk Management, Data Protection or Compliance.
Minimum 4 years in IT related roles; 2 years of Information Security and related audit experience required.
Understanding of security standards and frameworks
Familiarity of Windows and Linux operating systems.
*nix systems shell or command line experience for audit needs.
Knowledge of common security tools; GRC, SIEM(QRadar), vulnerability scanners(Nexpose, Nessus).
Experience using Jira, Confluence, and ServiceNow.
Understanding of IT systems, architecture, design, towards common industry best practices.
Strong analytical skills (logical/critical thinking) reviewing reports and spotting trends, areas of significant concern, etc.
Ability to be flexible and move between work streams to help accommodate changes in volumes
General IT and Compliance Audits. AWS Cloud Security and Compliance.
Strong attention to details. Analytical thinking. An 'auditor' mindset. Good verbal/written communications.
The Whole Person Promise:
We make a "Whole Person" promise to our team. You can have both meaningful work PLUS a full life at Bandwidth. We focus on accomplishing our mission as "whole people." That means we take care of our peoplein body, mind, and spirit.
Health: We pay 100% for benefits coverage including Medical, Dental, Vision, Prescription, Life, and Disability. Corporate chaplains, EAP and 401K match.
Fitness:90-minute fitness lunch with a paid gym membership with shuttle service available for workouts. On-site cardio gym, locker room/showers, classes, and sponsored sports and leagues. Nutritionist and personal trainer on-site.
Volunteer: We have a program dedicated to providing volunteer opportunities to employees, Bandwidthcares.