Information Security Analyst
Job Description
What if you could use your skills to develop a solution that impacts the way communities’ hospitals, homes, sports stadiums, and schools across the world are built? Construction impacts the lives of nearly everyone in the world, and yet it is also one of the world’s least digitized industries, not to mention one of the most dangerous. That’s why we’re looking for a talented Information Security Analyst to join Procore’s journey to revolutionize a historically under-served industry.
Our Information Security Analyst is vital in supporting Procore’s compliance journey, from a start-up to a mature, public company. The Analyst will play a role in implementing an effective security control environment which includes implementing security controls, participating in compliance reviews, coordinating user access review procedures, update and monitor GRC tools, and assisting with activities relating to SOX and other IT Compliance Standards. To succeed in this role, you’ll collaborate with internal and external teams to deliver results within deadlines. This is a great early-career opportunity for anyone interested in IT Governance, Risk, and Compliance (GRC). The role will provide an excellent opportunity to promote best IT Security practices within the organization as you grow your career.
This position will report into the IT Security Compliance Manager, and has the opportunity to be based remotely, or in one of our offices - Carpinteria, CA (headquarters), Austin, TX, or New York, NY office. Remote candidates will be considered with experience. We’re looking for someone to join us immediately.
What you'll do:
Assist with IT General controls through assessments, conducting walkthroughs, documenting controls, and conducting audit/self assessments to ensure design and operational effectiveness of those controls
Coordinate and execute Procore’s user access review procedures, from creating review worksheets, to sending out follow up communications
Collate evidence and coordinate meetings necessary for Procore’s audit engagements
Work collaboratively with stakeholders on upcoming projects such as Identity Governance & Administration, future JIRA workflows with IT Compliance impact, and other projects on the GRC Roadmap
Monitor and oversee the IT Compliance shared mailbox for messages
Act as a point of contact and communicate project status to stakeholders
Create and maintain project documentation, plans, and reports
Assist control owners with updating procedure documents should their procedures change
Maintain and keep up to date our GRC Tooling, OneTrust
Assist with providing relevant awareness training to control owners
Pull together data from disparate sources suitable for presentation to stakeholders
What we're looking for:
Bachelor’s degree in Management Information Systems, Cybersecurity required (or related experience or training)
1-3 years of experience at a technology audit/advisory/consulting firms preferred
Foundational knowledge with Security and Compliance standards like SOX, ISO 27001, SOC I & II, NIST, preferred.
Must possess strong problem-solving and analytical skills
Self-sufficient and self-motivated; capable of working with ambiguity in a dynamic environment
Excellent time management, prioritization, organization, and project coordination skills
Outstanding written and verbal communication skills - will need to document policies and procedures, and articulate them well across all levels at Procore
Demonstrate willingness to learn and grow in this field; must posses a ‘can-do’ attitude
Additional Information
If you'd like to stay in touch and be the first to hear about new roles at Procore, join our Talent Community.
About Us
Procore Technologies is building the software that builds the world. We provide cloud-based construction management software that helps clients more efficiently build skyscrapers, hospitals, retail centers, airports, housing complexes, and more. At Procore, we have worked hard to create and maintain a culture where you can own your work and are encouraged and given resources to try new ideas. Check us out on Glassdoor to see what others are saying about working at Procore.
We are an equal opportunity employer and welcome builders of all backgrounds. We thrive in a diverse, dynamic, and inclusive environment. We do not tolerate discrimination against employees on the basis of age, color, disability, gender, gender identity or expression, marital status, national origin, political affiliation, race, religion, sexual orientation, veteran status, or any other classification protected by law.
Perks & Benefits
You are a person with dreams, goals, and ambitions—both personally and professionally. That's why we believe in providing benefits that not only match our Procore values (Openness, Optimism, and Ownership) but enhance the lives of our team members. Here are just a few of our benefit offerings: generous paid vacation, employee stock purchase plan, enrichment and development programs, and friends and family events.