Overview
Remote
Depends on Experience
Contract - Independent
Contract - W2
Contract - 3 Month(s)
No Travel Required
Unable to Provide Sponsorship
Skills
NIST
ISO 27001
CIS
SOC 2
security
Risk
Compliance
information security
Job Details
Job Title: Security Risk & Compliance Analyst- Contracts Specialist
Duration - Initially 3 months, extendable (Long-term)
Location: Remote. Preferably on the East Coast. 7:00 AM to 4:00 PM or 8:00 AM to 5:00 PM ET.
Experince required: minimum 8+ years
- Strong understanding of concepts of information security (e.g. encryption, access control, data classification, incident response, vulnerability management, secure software development practices, etc.) and security frameworks (e.g., HITRUST, NIST, ISO 27001, CIS, SOC 2) to assess contractual language against industry standards.
- Skilled in document comparison and analysis, capable of evaluating multiple versions of agreements and summarizing key changes.
- Risk-aware communicator: who can interpret and articulate the implications of aggressive or non-standard security language in customer contracts.
- Collaborative mindset, able to work cross-functionally with Sales, Legal, and other business units to align contract language with organizational risk posture and compliance goals.
- Contract law basics especially around liability, indemnification, and breach notification. Also a good understanding of legal definitions and a good understanding of legal definitions such as personal data, confidential information, security breach, and data breach.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.