CrawlJobs Logo
Optimizely Logo Optimizely · IT - Administration

Information Security Compliance Analyst

Bangladesh, Dhaka · Job Posted January 22, 2026
Apply Position
Job Link Share

Job Description

At Optimizely, we're on a mission to help people unlock their digital potential. We do that by reinventing how marketing and product teams work to create and optimize digital experiences across all channels. With Optimizely One, our industry-first operating system for marketers, we offer teams flexibility and choice to build their stack their way with our fully SaaS, fully decoupled, and highly composable solution. The focus of this Information Security Compliance Analyst role position is to support the customer request management and commercial agreements process ensuring customer due diligence request are supported from information security and compliance perspective. The analyst will also be required to support ongoing information security/compliance initiatives relating to the global information security compliance program from an operational perspective. The analyst must be organized with an ability to self-manage with multiple high priority initiatives.

Job Responsibility

  • Help support operational and process driven components of our ISO27001/SOC2/PCI information security program
  • Help drive a program of continual service improvement to ensure ongoing maturity of the global information security program
  • Help support the commercial agreement process by reviewing and providing feedback from a Compliance perspective, escalating risks and concerns where necessary
  • Coordinate, contribute and complete Requests for Proposals (RFPs), Due Diligence Questionnaires (DDQs), Security Questionnaires as well as ad-hoc questionnaires/requests for prospects and existing customers
  • Help maintain and exand the information security and privacy customer response/knowledgebase platform to ensure all information is regularly reviewed, is up to date and relevant across the product portfolio and other related engagements
  • Develop a strong understanding of our Software Service business, and what the products offer
  • Ensure high quality customer facing content, contribute to complex projects individually as well as balancing priorities within the team
  • Identify, communicate and escalate risks associated with customer proposals as well as the information security/compliance program overall
  • Work closely with Compliance Team members, Subject Matter Experts and other stakeholders/internal customers across the business, where necessary
  • Develop knowledge of industry trends, competitive landscape to facilitate improved customer experience
  • Support ongoing compliance initiatives relating to the global information security compliance program
  • Ensuring that information provided to customer is accurate and fit for purpose based on existing practices

Requirements

  • Experience working in an Information Security role dealing specifically with governance, risk and compliance areas is preferred
  • Awareness of Information Security Compliance programs such as ISO27001, SOC2 & PCI
  • Ensure that information security control requirements are met from an operational perspective
  • The ability to identify risks, issues and vulnerabilities
  • The ability to work proactively, pragmatically and collaboratively in a fast-paced working environment, balancing multiple concurrent activities
  • Knowledge of responding to Customer related Information Security and Privacy due diligence requests
  • Experience working with contractual agreements within the Compliance area
  • Strong communication skills collaborating with internal teams, enjoy collaborating across departments
  • Calm presence under tight deadlines
  • Self-starter, consistent performer, professional, positive attitude
  • Excellent attention to detail
  • Service-oriented mindset
  • Excellent verbal & written communication skills
  • Bachelor's degree preferred or equivalent work experience

What we offer

  • Best-in-class compensation plans
  • Two annual festival bonuses
  • Recognition and rewards programs
  • Vacations days
  • Annual Work/Service Anniversary Leave
  • Parental leave (both maternity and paternity)
  • Health insurance
  • Reproductive benefits for both parents
  • Volunteering opportunities to make a difference
  • Chance to work alongside our incredible global team
  • Free communal transport facilities inside Dhaka to and from the office
  • Free catered lunch every day
Optimizely - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Security Compliance Analyst

8 matching positions

Information Security Compliance Analyst

The focus of this Information Security Compliance Analyst role position is to su...
Location
Location
Vietnam , Hanoi
Salary
Salary:
Not provided
optimizely.com Logo
Optimizely
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience working in an Information Security role dealing specifically with governance, risk and compliance areas is preferred
  • Awareness of Information Security Compliance programs such as ISO27001, SOC2 & PCI
  • Ensure that information security control requirements are met from an operational perspective
  • The ability to identify risks, issues and vulnerabilities
  • The ability to work proactively, pragmatically and collaboratively in a fast-paced working environment, balancing multiple concurrent activities
  • Knowledge of responding to Customer related Information Security and Privacy due diligence requests
  • Experience working with contractual agreements within the Compliance area
  • Strong communication skills collaborating with internal teams, enjoy collaborating across departments
  • Calm presence under tight deadlines
  • Self-starter, consistent performer, professional, positive attitude
Job Responsibility
Job Responsibility
  • Help support operational and process driven components of our ISO27001/SOC2/PCI information security program
  • Help drive a program of continual service improvement to ensure ongoing maturity of the global information security program
  • Help support the commercial agreement process by reviewing and providing feedback from a Compliance perspective, escalating risks and concerns where necessary
  • Coordinate, contribute and complete Requests for Proposals (RFPs), Due Diligence Questionnaires (DDQs), Security Questionnaires as well as ad-hoc questionnaires/requests for prospects and existing customers
  • Help maintain and expand the information security and privacy customer response/knowledgebase platform to ensure all information is regularly reviewed, is up to date and relevant across the product portfolio and other related engagements
  • Develop a strong understanding of our Software Service business, and what the products offer
  • Ensure high quality customer facing content, contribute to complex projects individually as well as balancing priorities within the team
  • Identify, communicate and escalate risks associated with customer proposals as well as the information security/compliance program overall
  • Work closely with Compliance Team members, Subject Matter Experts and other stakeholders/internal customers across the business, where necessary
  • Develop knowledge of industry trends, competitive landscape to facilitate improved customer experience
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Information Security Compliance Analyst - Tax&Foreign Trade IT application concept owner

As part of the global tax team, you will play a key role in ensuring that global...
Location
Location
Poland , Warszawa
Salary
Salary:
Not provided
https://www.bosch.pl/ Logo
Robert Bosch Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of IT governance, data protection (GDPR), and information security requirements
  • Excellent communication, interpersonal, and intercultural skills to collaborate effectively across all levels and regions
  • Experience in organizational change, process management, and stakeholder enablement
  • Structured, analytical, and proactive working style with a high degree of accountability
  • Fluent in English
  • Experience in managing projects - ideally in tax, finance, or compliance-related areas - is considered a strong advantage
Job Responsibility
Job Responsibility
  • Ensure compliance with internal policies and governance models related to application ownership, data protection, and lifecycle management
  • Oversee coordination of data protection and information security activities within the central Tax departments
  • Monitor the implementation of GDPR and other regulatory requirements, including data deletion projects
  • Verify that IT applications and processes meet compliance standards and audit requirements
  • Drive enablement initiatives for application owners to ensure proper understanding and execution of governance standards
  • Organize and deliver target group-oriented training on application management, data security, and IT compliance
  • Identify improvement opportunities and propose innovative solutions leveraging IT capabilities and automation tools
What we offer
What we offer
  • Competitive salary + annual bonus
  • Hybrid work with flexible working hours
  • Referral Bonus Program
  • Copyright costs for IT employees
  • Complex environment of working, professional support and possibility to share knowledge and best practices
  • Ongoing development opportunities in a multinational environment
  • Broad access to professional trainings (incl. language courses), conferences and webinars
  • Private medical care and life insurance
  • Cafeteria System with multiple benefits (incl. MultiSport, shopping vouchers, cinema tickets, etc.)
  • Prepaid Lunch Card
  • Fulltime
Read More
Arrow Right

Lead Analyst, Information Security Governance & Compliance

Beacon Hill Technologies is partnering with a client to identify a Lead Analyst,...
Location
Location
United States , Boca Raton
Salary
Salary:
Not provided
bhsg.com Logo
Beacon Hill
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Practical, working knowledge of audit and assurance concepts and terminology
  • Experience supporting both internal and external audits
  • Ability to evaluate the quality and sufficiency of audit evidence
  • Strong attention to documentation, traceability, and control effectiveness
  • Prior experience in information security governance, compliance, or risk management
  • Demonstrated ability to lead work while remaining directly involved in execution
  • Clear communication skills, particularly when explaining audit or compliance topics
  • Bachelor’s degree in Information Security, Risk Management, or a related discipline
  • 7+ years of experience in governance, risk, and compliance or information security roles
  • Familiarity with security and control frameworks such as NIST or ISO
Job Responsibility
Job Responsibility
  • Support and guide audit, compliance, and risk activities within the information security organization
  • Ensure audit readiness
  • Coordinate audit responses
  • Validate the quality and completeness of evidence
Read More
Arrow Right

Senior Information Security Cyber Security Data Analyst

Senior Information Security Cyber Security Data Analyst – Assistant Vice Preside...
Location
Location
India , Pune
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-12 years of relevant experience in Cyber Security, Information security, primarily into building data pipelines, Data collection and management, Data transformation etc.
  • Building Data Pipelines: Creating systems for collecting, storing, and transforming data from various sources. Impala, Hive
  • Data Collection and Management: Data engineers are responsible for gathering data from various sources, ensuring its quality, and making it accessible for analysis.
  • Data Transformation: They convert raw data into usable formats, often using ETL (Extract, Transform, Load) processes, to big data platform of Hadoop, Cloud technologies like DataBricks and Snowflake to make it suitable for analysis and reporting.
  • Applicable Certifications or willingness to earn within 12 months of joining
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Identify potential information security (IS) risks and make recommendations for enhancement
  • Collect and analyze security risk evidence and coordinate with internal and external compliance and auditing agencies / officials
  • Execute meetings and communicate complex security topics and safe IS practices with all levels of the organization
  • Ensure that controls are utilized daily and that non-compliance remediation is addressed
  • Provide IS consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts
  • Assist with defining and implementing IS standards to align procedures and practices in compliance with Citi standards
  • Educate and advise on safe information security practices and current, changing, and/or recommended information security requirements
  • Validate compliance with IS policies, practices, and procedures, and resolve a variety of IS related issues in coordination with the business
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Has the ability to operate with a limited level of direct supervision.
  • Fulltime
Read More
Arrow Right

Information Assurance Specialist I (Information Security Analyst)

Barbaricum is seeking an Information Assurance Specialist I (Information Securit...
Location
Location
United States , Indianapolis
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • Bachelor's degree in related field
  • Meet DoDM 8140.03 IAT III/IAM II requirements
  • Minimum 2yr experience in network operations and information security
  • Demonstrated experience assessing security controls based on cybersecurity principles and tenets (e.g., NIST SP 800-53, Cybersecurity Framework, etc.)
  • In-depth understanding of relevance of NIST Security Controls and Control Implementation methodologies to the SA&A process
  • Demonstrated experience with continuous monitoring/ongoing authorization
Job Responsibility
Job Responsibility
  • Support cybersecurity compliance, risk management, and information assurance activities for Department of Defense (DoD) systems and networks
  • Assist in assessing and validating security controls in accordance with NIST SP 800-53, the NIST Cybersecurity Framework, and applicable DoD requirements
  • Support the Security Assessment and Authorization (SA&A) process by reviewing control implementations, identifying risks, and documenting findings
  • Participate in continuous monitoring and ongoing authorization activities to help maintain system security posture and compliance
  • Assist with vulnerability assessments, security reviews, and remediation tracking efforts across enterprise environments
  • Collaborate with system administrators, engineers, and cybersecurity personnel to implement and maintain required security controls
  • Develop and maintain cybersecurity documentation, including assessment reports, compliance artifacts, and authorization support materials
  • Monitor security-related activities and provide recommendations for risk mitigation and control improvements
  • Support compliance with the Risk Management Framework (RMF), organizational policies, and applicable federal and DoD cybersecurity standards
  • Stay informed on cybersecurity threats, vulnerabilities, and best practices to support effective information assurance operations
  • Fulltime
Read More
Arrow Right

Information Assurance Specialist – III (Information Security Analyst)

Barbaricum is seeking an experienced Information Assurance Specialist III (Infor...
Location
Location
United States , Indianapolis
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Secret Clearance
  • Bachelor's degree in related field
  • Must meet DoDM 8140.03 IAT III/IAM II requirements
  • Minimum 10yr experience in network operations and information security
  • Demonstrated experience assessing security controls based on cybersecurity principles and tenets.(e.g., NIST SP 800-53, Cybersecurity Framework, etc.)
  • In-depth understanding of relevance of NIST Security Controls and Control Implementation methodologies to the SA&SA process
  • Relevant DOD, DHS or .gov Cyber Security Information Assurance focused experience with specific current hands-on researching, writing, and submitting complete A&A documentation packages for new system authorizations
Job Responsibility
Job Responsibility
  • Assess, implement, and validate cybersecurity controls in accordance with NIST SP 800-53, the NIST Cybersecurity Framework, and applicable DoD cybersecurity requirements
  • Support the Security Assessment and Authorization (SA&A) process by evaluating security controls, identifying risks, and recommending mitigation strategies
  • Develop, review, and maintain Assessment and Authorization (A&A) documentation packages to support system accreditation and authorization efforts
  • Conduct security assessments, vulnerability analyses, and compliance reviews to ensure systems meet federal and DoD cybersecurity standards
  • Collaborate with system owners, engineers, and cybersecurity teams to implement security controls and maintain a strong security posture across enterprise environments
  • Support continuous monitoring activities, including risk assessments, control validation, remediation tracking, and reporting
  • Provide cybersecurity guidance and recommendations related to information assurance, risk management, and regulatory compliance
  • Prepare technical reports, security documentation, and executive briefings to support authorization decisions and stakeholder requirements
  • Ensure compliance with Risk Management Framework (RMF), DoD policies, and applicable government cybersecurity regulations
  • Serve as a subject matter expert on information assurance, cybersecurity controls, accreditation processes, and security compliance initiatives
  • Fulltime
Read More
Arrow Right

Information Security Analyst

We are looking for an Information Security Analyst to join our Risk, Legal and C...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
lgt.com Logo
LGT Gruppe Holding AG
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years in security operations or related IT functions, such as networking or IT systems engineering
  • Strong understanding of security concepts such as server hardening & patching, M365 & Azure configuration, Endpoint Protection solutions, Vulnerability Management, Firewall configuration, user access management, data loss prevention
  • Strong understanding of security architecture concepts across on-premises, cloud, and SaaS environments
  • Experience assessing solution designs and identifying security risks at an architectural level
  • Ability to translate complex technical and policy-driven security requirements into business-friendly language
  • Strong pragmatic, risk-based mindset with the ability to balance security, usability, cost, and delivery timelines
  • Experience engaging in business projects, conduct threat modelling, risk assessments, controls design as well as validating the design and implementation of key controls
  • Experience driving security initiatives to align technical services with security policies
  • Strong problem-solving abilities, with a logical and methodical approach to tasks
  • Excellent communication skills, able to translate technical concepts for non-technical stakeholders
Job Responsibility
Job Responsibility
  • Responsible for maintaining a strong security environment, reducing cyber risk exposure, and supporting security operations, monitoring, and reporting
  • Contributes to LGT WM's information security strategy and risk framework while embedding security requirements into key business projects from the outset
  • Participates in initiatives to ensure compliance with privacy laws and external regulatory obligations, including GS 007
  • Support the cyber security assurance program, assisting audit activities and owning the remediation of findings
  • Support an effective cyber security assurance strategy over third parties / suppliers, enabling the business to engage with strategic partners without taking excessive risk
  • Conduct third party reviews when required
  • Actively participate in cyber security strategy formulation, prioritizing the protection of mission critical digital assets and maximizing the value of security investments
  • Participate in project delivery teams to provide security input throughout the solution lifecycle, from early design through to implementation and go-live
  • Participate in operational change management and ensure security related changes are adequately tested prior and post implementation, to reduce business impacts
  • Fulltime
Read More
Arrow Right