The Associate Security Analyst II will maintain the confidentiality, integrity and availability of sensitive Company information. The position may also be assigned responsibilities within a diverse set of security subject areas, such as: HIPAA and/or Sarbanes-Oxley (SOX) compliance, SOC2 and SOC1, ISO 27001, risk management including risk methodology and third-party vendor assessments, business resiliency preparedness, PII data protection, privacy, security awareness, and identity and access management. The Associate Security Analyst II will frequently collaborate with others, work independently with limited direction, or in large groups, and communicate facts and results to peers, leaders, and management. This role will leverage knowledge of security standards, processes, procedures and solutions and support security functions.
Does this sound like you?
- You have a process improvement mindset and take pleasure in seeing how your contribution impacts the goals of the organization.
- You are a self-starter who proactively identifies risks and have the tenacity to see remediation through completion.
- You like working in a fast-paced and technology adept environment on a team that values positivity and collaboration.
- You are a life long learner who enjoys rolling up their sleeves and solving problems.
Why join SPS?
We solve retail supply chain problems by cutting through inefficiency with innovation and automation. At SPS we empower retailers, suppliers, distributors, grocers, and logistics partners to work better together with our people, our process, and our tech products. We have the world’s largest retail network, and we don’t just lead the industry, we are the industry.
At SPS, we believe every employee makes a difference. We ensure employees have the tools, resources, and training to explore new ideas and execute them. Our success comes from playing as a team and always playing to win. Careers don’t just grow here, they’re made here.
What is the day-to-day like?
- Collaborate with stakeholders across the organization to understand processes, procedures, applications, and technologies
- Identify opportunities for alignment and continuous improvement in support of company and security objectives
- Work directly with internal and external stakeholders to effectively communicate information on SPS security controls
- Contribute to application and technology compliance with corporate and regulatory policies/standards & industry best practices
- Leverage security standards, processes, procedures and solutions to build and mature security controls
- Participate in project work; perform security specific project tasks; lead work streams
- Coordinate the activities of others within nature and scope of IT Security
What experience and skills do you need?
- Bachelor’s degree in related business or technical area, or an equivalency of education and work experience
- Strong communication and time management skills, ability to learn quickly
- Experience identifying problems and resolving them
- Familiarity and use of assessment tools, risk management tools and methods
Nice to haves?
- Prior participation in or responsibility for audits and assessments
- Experience with some common security frameworks such as ISO 27001, SOC 1 & 2, NIST CSF, CIS, HITRUST, NIST 800-53/171, CMMC, PCI, etc.
- Experience working with vendors, auditors, assessors, 3rd party partners, affiliate and subsidiary organizations
- Experience working with technology and software; strong business acumen
- Network, system or application design, implementation or support
- System administration with experience across multiple platforms and applications
SPS Commerce offers a comprehensive package of benefits including health, dental, vision, disability, and life insurance, paid time-off, 401(k), health and flexible spending accounts, stock purchase plan and more.
** EOE including disability / veteran **
