Vedere l'offerta completa

SAAS SECURITY & COMPLIANCE ANALYST (GRC)

Descrizione dell'offerta di lavoro

Hey you!   Want to work for one of the fastest growing SaaS companies in the world?   We’re building the next generation of learning software that companies like AWS, Netflix, Opentable and L’Oreal rely on to deliver training   We believe learning is for everyone, and that we all have something we can learn from each other.
We rely on one another to continuously innovate our products and processes to create an exceptional experience for our employees, customers and partners.
Still not sure? We are a culture where values are at the center of everything we do.
We also embody what we call the Docebo Heart.
We trust our teammates, assume the best of one another, and also hold space for all the differences that make us better.
So what are you waiting for? Apply today! Join 900+ global Docebians and change the way people learn.
Are you ready to be a part of the learning revolution?   About This Opportunity.
The role is focused on demonstrating the business value of solid compliance and security programs to prospects and customers, working closely with the Sales & Legal teams so that the Company's Cybersecurity posture will improve customer experience and unlock business value.
It is essential to ensure that Docebo adheres to regulatory frameworks and maintains robust security measures.
Collaborating with internal teams and external stakeholders, they effectively address compliance and security requirements, safeguarding the company's operations and reputation.
This role involves continuous improvement efforts and updating on emerging compliance regulations, security threats, and industry best practices.
The role also provides training and guidance to internal teams on compliance requirements and security protocols.
Reports to.
Business Enablement Manager - Security Location.
Biassono, Lombardy, Italy (hybrid) \ Responsibilities.
Customer Engagement and Response.
respond to customers’ security and privacy-related inquiries, compile comprehensive responses (mainly RFI, RFP, and RFQ), and address compliance questionnaires, ensuring timely and accurate information dissemination and actively supporting the sales process.
Customer Audit Support and Documentation.
Coordinate Docebo’s activities related to customer compliance audits, assist with agreement and term reviews, and prepare management reports on compliance and security initiatives in collaboration with the GRC team.
Support Internal Compliance Management.
maintain internal compliance documentation, and coordinate the conduction of risk assessments and internal company audits to ensure organizational readiness in collecting the needed evidence.
Vendor Risk Assessment and Monitoring.
Support the evaluation of company third-party vendor-associated risks, monitor security controls, and maintain risk management reporting dashboards to mitigate risk and effectively qualify company suppliers; in collaboration with the GRC team.
Security Awareness.
develop and coordinate the implementation of security & privacy awareness programs to promote a culture of security consciousness; in collaboration with the GRC team.
Cross-functional collaboration.
collaborate across the company departments to align compliance, security, and privacy efforts with business objectives; consult the company's departments to assess changes and compliance obligations and support updating company compliance programs and controls.
Documentation and Reporting.
Maintain comprehensive documentation of compliance activities, including policies, procedures, and audit findings, and prepare reports for management and regulatory authorities; in collaboration with the GRC team.
Trust Page management.
support the definition of content, and keep it updated.
Gather information regarding clients' and prospects' requests related to the content of the Trust Page to offer expertise and feedback to other departments to ensure that the content is relevant and up to date with the latest standards.
Requirements.
Fluent knowledge of English,  working experience with contracts and documentation in English, and effective communication and presentation skills 4+ years of relevant work experience Working experience supporting audits and compliance & security activities for SaaS companies Working knowledge of information security principles, trends, and best practices, specifically cloud environments and services (eg.
AWS, Azure, GCloud) Knowledge of GDPR requirements and other data privacy laws (eg.
CCPA, PIPL) Knowledge of ISO/IEC , ISO/IEC , ISO/IEC , ISO/IEC , ISO , and AICPA/ISAE SOC 2 & PCI Knowledge of CFR21 Part 11 Nice to have.
Bachelor's degree in computer science, information security, auditing, law, or similar Certified Information Systems Auditor (CISA) Certified Information Privacy Professional (CIPP, IAPP or CIPT) CompTIA Security+ Proficiency in tools such as Drata, RFP.
o, and similar Working experience implementing, evaluating, and assessing cybersecurity and compliance standards for the National Institute of Standards and Technology (NIST) or FedRAMP to further the assessment and secure operation of the FedRAMP cloud-based systems \ Benefits & Perks -Generous Vacation Policy, plus 2 extra floating holidays to use for religious or cultural events that matter to you -Employee Share Purchase Plan -Career progression/internal mobility opportunities -Four employee resource groups to get involved with (the Docebo Women's Alliance, PRIDE, BIDOC, and Green Ambassadors) -WeWork partnership and “Work from Anywhere” program Hybrid Office Model We believe when people are together, they develop deeper relationships and accelerate innovation.
Because of this, all Docebo employees worldwide are “hybrid.” We encourage in-person collaboration while supporting work-from-home when employees need dedicated focus time, allowing Docebians to do their best every day.
Each team leader is able to decide how often their teams come into the office, considering the needs of the team and the employee’s needs.
Our Talent Acquisition team will let you know about the role you are applying for and the hybrid details during the first interview.
About Docebo Here at Docebo, we power learning experiences for over customers around the world with our easy-to-use, AI-powered Suite designed to close the enterprise learning loop.
We have successfully achieved 2 IPOs (TSX.
DCBO & NASDAQ.
DCBO), been recognized as a Top SaaS e-learning Solution, and are growing exponentially in the process.
Docebo is a global company with offices in North America, EMEA, APAC and more.
Our people believe in six core values, simply defined and manifested in everything we do - Innovation, Simplicity, Accountability, Togetherness, Curiosity, and Impact.
If this sounds like you, now is your time to join one of the fastest-growing learning technology companies on the market.
Apply today! Docebo is an Equal Employment Opportunity employer.
We are committed to diversity and inclusion in our workforce.
All qualified applicants and employees will receive consideration for employment regardless of their race, color, religion, sex (including pregnancy, gender identity, and sexual orientation), national origin, citizenship status, age, disability, genetic information, or any other category protected under applicable law.
Any individuals requiring a reasonable accommodation to assist with their job search or application for employment should send an e-mail to recruiting_accommodations (at) docebo.
om.
The e-mail should include a description of the requested accommodation and the position you’re applying for or interested in.
Vedere l'offerta completa

Dettagli dell'offerta

Azienda
  • Docebo
Località
  • Tutta l'Italia
Indirizzo
  • Imprecisato - Imprecisato
Tipo di Contratto
  • Imprecisato
Data di pubblicazione
  • 02/12/2024
Data di scadenza
  • 02/03/2025
CYBER SECURITY SPECIALIST
365 gradi srl

Per l’head quarter di una realtà metalmeccanica di grandi dimensioni, multinazionale italiana leader di settore, stiamo ricercando un/a cyber security specialist... buona conoscenza della lingua inglese scritta e parlata; requisiti preferenziali: conoscenza in ambito ot/opsec (operational technology......

Analista funzionale security
Sincrono formazione srl

Ruolo ricoperto: analista funzionale security competenze richieste: verifica tecnica di conformità ai requisiti di sicurezza aziendali attivita’: attività di security governance normative competenze linguistiche: inglese: livello b1 titoli accademici richiesti: laurea in ambito scientifico certificazioni......

Analista tecnico security
Sincrono Formazione Srl

Ruolo ricoperto:-analista tecnico securitycompetenze richieste:-capacità di comprensione di sistemi complessi, in particolare software, con l'obiettivo di analizzare le problematiche di security connesse-capacità di relazionarsi con le linee di ingegneria/sviluppo dei sistemi, con i clienti e con i fornitoricompetenze......

Business Analyst Torino
Programs & Project Consulting s.r.l.

Ricerchiamo un business analyst in ambito hospitality sulla sede di torino... i dati saranno trattati e conservati esclusivamente per finalità di selezione presenti e future, garantendo i diritti di cui all'art... e' necessaria un'esperienza sul campo di almeno 4/5 anni, di cui almeno uno nel ruolo di......

Data Analyst su Milano
Programs & Projects Consulting S.r.L.

E 216/03... ai candidati è richiesta la conoscenza base dei linguaggi sql standard e python... i dati saranno trattati e conservati esclusivamente per finalità presenti e future di selezione e di reclutamento, garantendo i diritti di cui agli art... e' inoltre gradita la conoscenza delle seguenti......

Data analyst milano
Programs & projects consulting s.r.l.

La retribuzione sarà commisurata alle esperienze maturate e alle effettive capacità professionali... 215/03 e 216/03... i dati saranno trattati e conservati esclusivamente per finalità presenti e future di selezione e di reclutamento, garantendo i diritti di cui agli art... e' inoltre gradita la conoscenza......

Business Analyst Milano
Programs & Projects Consulting S.r.L.

Ricerchiamo business analyst sulla sede di milano... 215/03 e 216/03... i candidati interessati devono inviare il proprio curriculum vitae aggiornato e dettagliato in formato word, indicando l'autorizzazione al trattamento dei dati personali come da regolamento eu 2016/679... e’ richiesta una buona conoscenza......

BE_JAVA e/o BA_JAVA_ANALYST
Programs & Projects Consulting S.r.L.

Siamo alla ricerca di diversi profili medium/senior con competenze di analisi e sviluppo da inserire all’interno dei contesti internazionali di ringmaster... alcune attività sono fatte in coordinamento con colleghi internazionali, pertanto la conoscenza dell’inglese è un requisito mandatorio......

NETWORK SECURITY ENGINEER
365 gradi srl

Per realtà giovane, dinamica e altamente qualificata il cui core business è la sicurezza informatica, parte di uno dei più importanti gruppi italiani del settore it, stiamo ricercando un/a network security engineer... 000,00 in base alle competenze tecniche e soft osservate durante l’iter di selezione......

Tecnico in Data Analyst, Contabilità e Controllo di Gestione
Fondazione Maddalena di Canossa

L'intervento è finalizzato a formare una figura professionale in grado di: gestire il sistema contabile attraverso l'uso di software innovativi, dare una visione integrata dei dati economici, finanziari, commerciali, e di produzione dell'azienda; sovraintendere al business intelligence e ai big data......