Senior Security Governance Risk & Compliance Analyst

| Austin | Hybrid
Sorry, this job was removed at 2:36 p.m. (CST) on Friday, April 12, 2019
Find out who's hiring in Austin.
See all Cybersecurity + IT jobs in Austin
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

BigCommerce is disrupting the e-commerce industry as the SaaS leader for fast- growing, mid-market businesses. We enable our customers to build intuitive and engaging stores to support every stage of their growth.

The number one thing our customers care about is Information Security. The person who accepts this challenge will be able to make a large impact on the maturity of our Information Security Management System. In this role, you’ll be helping guide the work to make BigCommerce a shining example of Cybersecurity best practices. The work involves our PCI DSS and ISO 27001 certification processes, working with our teams to implement risk improvement processes and projects.

BigCommerce is committed to being a leader in Information Security in the ecommerce space. Your skills and your passion for protecting data and ensuring compliance will be a large factor in BigCommerce’s future success.

What you’ll do:

  • Assist the Governance Risk and Compliance Manager with maintaining the BC Information Security Management System (ISMS); developing policies, procedures and security standards
  • Monitor compliance with regulatory requirements such as PCI DSS, ISO 2700X, CSTAR and liaise with business stakeholders (IT, Product & Engineering, Sales, Marketing, Human Resources etc.) to ensure organizational compliance
  • Perform InfoSec risk and control assessments and report on risks to risk owners, recommend mitigation strategies and manage risks through its lifecycle
  • Perform scheduled audit and compliance checks against organization policies, document and monitor compliance violations and control improvements
  • Build awareness and accountability around IT governance, risk, and compliance control functions
  • Articulate InfoSec risk into business terms while engaging with stakeholders, product owners, and software engineers
  • Monitor and track exception to policies (ETP) while collaborating with the security operations team to develop and maintain a dynamic and real-time enterprise Risk Register and dashboard
  • Leverages technology to aggregate controls, risk and compliance information to rapidly identify and report exceptions
  • Serve as liaison to business units and third parties to create and/or provide feedback on items assigned or influenced by the team (e.g., InfoSec best practices, policy and procedure development, employee education and awareness, security exceptions, data privacy)
  • Define and deliver appropriate GRC metrics, key performance indicators (KPIs), analytics, and scorecards
  • Organize and leads GRC related meetings and prepare meeting agendas and minutes

Who You Are:

  • Minimum 5 years of experience in IT and information security.
  • In-depth understanding of PCI DSS, ISO2700x as well as industry security frameworks
  • Experience in financial services, e-commerce environment and a good understanding of cloud models (SaaS, IaaS and PaaS) is definitively a strong asset
  • Advanced knowledge of risk assessment design and delivery
  • Knowledgeable of governance, risk and compliance systems
  • Excellent interpersonal and communication skills - oral and written (including listening and facilitation skills) to deal with a wide range of stakeholders
  • Good influencing skills and ability to adapt to a dynamic, rapidly changing business and technical environment
  • Strong analytical skills for defining strategy, operating model and mitigating potential issues with an effective change management plan
  • Ability to work independently
  • Ability to prioritize and multitask. Flexibility and adaptability in work approach.
  • Calmness and clarity of thought under pressure and ability to maintain confidentiality
  • Demonstrates team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles
  • Accept responsibility and personal accountability
  • Professional certifications such as CISSP, CCSP, CISA, CRISC, CISM are considered a plus

Diversity & Inclusion at BigCommerce

We have the opportunity to build not only a great business, but a great company, with soul. Our beliefs and commitment to diversity and inclusion are a central part of achieving that.

Our dedication to diversity and inclusion is grounded in two things: a moral belief in the dignity, value, and potential of every individual, and a practical belief that diverse, inclusive teams will create the best outcomes for our customers, partners, employees, and company. We welcome everyone to be a part of our journey.

Read Full Job Description
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
  • People Operations
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PHPLanguages
    • PythonLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • SwiftLanguages
    • TypeScriptLanguages
    • ElixirLanguages
    • ErlangLanguages
    • Objective -CLanguages
    • ScalaLanguages
    • GoLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • ReduxLibraries
    • AjaxLibraries
    • Backbone.jsFrameworks
    • CircleCIFrameworks
    • HadoopFrameworks
    • LaravelFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • SpringFrameworks
    • Vue.jsFrameworks
    • jQueryFrameworks
    • Next.jsFrameworks
    • SeleniumFrameworks
    • JenkinsFrameworks
    • ScalatestFrameworks
    • MockitoFrameworks
    • CassandraDatabases
    • HBaseDatabases
    • HiveDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • RedisDatabases
    • SnowflakeDatabases
    • RedshiftDatabases
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • PhotoshopDesign
    • SketchDesign
    • Adobe Creative SuiteDesign
    • AsanaManagement
    • ConfluenceManagement
    • Google DriveManagement
    • Google DocsManagement
    • JIRAManagement
    • SmartsheetManagement
    • WordpressCMS
    • SalesforceCRM
    • MailChimpEmail
    • MarketoLead Gen
    • Google HangoutsCollaboration
    • Microsoft TeamsCollaboration
    • SlackCollaboration
    • ZoomCollaboration
    • SmartsheetProject Management

Location

Our HQ is set amongst trees and nature trails in the beautiful hills of Austin.

What are BigCommerce Perks + Benefits

BigCommerce Benefits Overview

We empower our employees to think big and do great work by offering a positive work environment and outstanding benefits.

For your health: We offer multiple national medical insurance plans including PPO and HDHP options. We also offer a PPO dental plan and vision insurance.

For your wealth: We offer a 401(k) retirement plan, a Health Savings Account (HSA), a Healthcare Flexible Spending Account (FSA), and a Dependent Care Flexible Spending Account (DCRA) as pre-tax benefits. We also offer company paid life insurance up to 3 times your annual salary, as well as company paid short-term & long-term disability insurance.

For your resilient self: We care about your wellbeing in addition to your health and wealth. To assist with that, we offer paid vacation leave (15 days PTO for hourly employees and open vacation for our salary employees). All employees receive paid sick leave, paid volunteer time, and a paid wellness day. We have multiple family benefits for caregivers including paid parental leave, newborn child sick leave, adoption assistance, and a flexible return to work policy. We also offer educational reimbursements, a free BigCommerce ecommerce store, and an Employee Assistance Program.

Last, but definitely not least, we like to enjoy ourselves at work. We have company-sponsored employee programs including Employee Resource Groups, culture clubs, even virtual events.

Culture
Volunteer in local community
We encourage our employees to give back to our local communities through volunteer work. BigCommerce provides two paid Charity/Volunteering Leave days per calendar year to all permanent employees.
Partners with nonprofits
Each year, the BC family partners with Partnerships for Children to help kids in the Austin area who have been taken from their homes and are living in protective custody during the holidays.
Open door policy
Open office floor plan
Employee resource groups
Employee-led culture committees
Hybrid work model
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
BEmpowered for women, non-binary people, and allies; BProud for LGBTQ+ and allies; B-United for Veterans and allies; BCinColor for people of color and allies; BigFamily for caregivers and alli
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
National United HealthCare PPO & HDHP plan options with deductibles as low as $500, coverage up to 100% for in-network services and low monthly premiums
Life insurance
Pet insurance
Wellness programs
Team workouts
Mental health benefits
Financial & Retirement
401(K)
Company equity
BigCommerce offers equity to employees through a number of different occasions, including an annual equity performance review period.
Child Care & Parental Leave Benefits
Generous parental leave
Family medical leave
Return-to-work program post parental leave
Company sponsored family events
Vacation & Time Off Benefits
Unlimited vacation policy
Generous PTO
Unlimited vacation policy for salaried team members and generous accrued time off policy for non-exempt team members.
Paid volunteer time
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Some meals provided
Company-sponsored happy hours
Onsite office parking
We offer employees parking in a garage on the property.
Fitness stipend
Onsite gym
Professional Development Benefits
Job training & conferences
BigCommerce offers a variety of opportunities for learning and development from training sessions and workshops, to different conferences to attend.
Lunch and learns
Promote from within
Mentorship program
Career mentorship is available.
Continuing education stipend
Continuing education available during work hours
Online course subscriptions available
Customized development tracks

Additional Perks + Benefits

We empower our employees to define culture in the areas of wellness & fitness, community & volunteerism, and team building through local culture clubs that help our employees connect. Our Employee Resource Groups (ERGs) support our diverse workforce through supportive, inclusive networks that help develop awareness and respect across the company. We sustain our culture by understanding what drives our employees' engagement, measuring that engagement, and implementing initiatives to continue to make BigCommerce an even better place to work.

More Jobs at BigCommerce

Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about BigCommerceFind similar jobs like this