Job Description
The Sr. Security Compliance Analyst is responsible for supporting the organization’s security compliance and risk initiatives with a primary focus on SOC 2 audit readiness and execution. This role will manage internal audits, monitor and track SOC 2 control requirements, gaps, and remediation, and oversee the lifecycle of risk identification and registration. The analyst will work cross-functionally to ensure controls are properly designed, implemented, and operating effectively in alignment with SOC 2 and other regulatory requirements.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.
Required Skills & Experience
• Bachelor’s degree in Information Security, Information Systems, or related field (or equivalent experience)
• 3–5 years of experience in security compliance, audit, or GRC
• Hands-on experience with SOC 2 audits and Trust Services Criteria
Strong understanding of cybersecurity due diligence, including risk, control, and compliance assessments.
• Experience performing internal audits and control testing
• Familiarity with GRC tools (e.g., ServiceNow GRC, Archer GRC)
• Strong understanding of risk management principles and frameworks
• Knowledge of common frameworks (e.g., AICPA SOC 2, ISO 27001, NIST)
• Strong analytical, organizational, and communication skills
Nice to Have Skills & Experience
23 NYCRR Part 500 Certification or understanding
Prior experience in banking, fintech, mortgage, insurance, or regulated financial services
Familiarity with project management methodologies to manage and coordinate multiple moving parts effectively
Experience building or scaling programs in a high‑growth or evolving environment
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.