### **The Lead Security Compliance Analyst will oversee the planning, execution, and management of SOC 1 and SOC 2 audits, ensuring compliance with industry standards and regulatory requirements. This role will coordinate with internal teams and external auditors, maintain audit readiness, and drive remediation efforts to strengthen the organization’s control environment.** ### **20% \- Leadership** * **Create a team environment where staff members work together for the good of the team** * **Collaborate with Security Manager to propose and implement improvements** * **Promote new ideas and process improvements from staff; document and present to management** * **Work closely with other Leads to ensure all groups are working under the same guidelines** * **Provide feedback and participate in performance reviews with Manager** * **Address concerns from staff members engaging other Leads or Managers** * **Assist Manager on department strategy, roadmap and operational plan** * **Coach and direct Security Administrators, Sr. Security Administrators, Security Analysts and Sr. Security Analysts** ### **60% \- Managing workflow** * **Lead SOX IT Compliance: Oversee all SOX IT compliance efforts, ensuring controls are designed, implemented, and tested effectively to comply with regulatory standards.** * **SOC Reporting: Coordinate SOC 1, SOC 2, and other required SOC reporting, ensuring audits are completed timely and accurately, with findings remediated as necessary** * **Evidence Management: Coordinate with various internal departments to gather SOX It and SOC documentation and evidence.** * **Control Documentation and Testing: Develop, update, and maintain control documentation for SOX IT and SOC, including risk assessments, process narratives, and control matrices. Support the preparation, review, and validation of control testing, track audit findings, and drive remediation plans to completion.** * **Collaborate with Internal \& External Auditors: Work closely with internal and external auditors to facilitate SOX and SOC audits, ensure audit readiness, address issues, and develop remediation plans.** * **Project Management: Oversee complex SOX IT projects, ensuring compliance with IT security policies and standards while coordinating timelines, resources, and deliverables.** * **Regulatory Compliance Oversight: Monitor and manage IT security compliance requirements, remaining current on regulatory changes affecting SOX and SOC reporting.** * **Continuous Improvement: Identify and implement continuous improvements for SOX IT and SOC processes, focusing on reducing compliance costs, improving control environments, and optimizing testing procedures.** ### **30% \- Administrative** * ### **Frequent meetings with team members** * ### **Conduct weekly status meeting with Manager** * ### **Provide feedback on performance plans** * ### **Ensure metrics are monitored, updated and reported to Manager** * ### **Assume accountability for directing others toward appropriate learning opportunities in both technical and related competency areas** ### **Coach, direct and mentor others including but not limited to:** * ### **Security Administrators** * ### **Sr. Security Administrators** * ### **Security Analysts** * ### **Sr. Security Analysts** **Requirements** ### **Education:** ### **Bachelor’s degree in Information Systems, Business Management, Computer Science, Engineering, Accounting, Finance, Audit or related discipline; or equivalent experience.** * ### **Professional certification(s) (CISA, Security\+, MCSE, CNA/CNE, CISSP) an asset.** ### **Previous experience:** * ### **7\+ years working in a security and compliance related operational environment with a strong focus on SOX IT compliance and SOC reporting.** * ### **Experience as a Sr. Security Analyst and Sr. Security Engineer; or equivalent** Knowledge and skills: * Work independently, demonstrate initiative, adapt to change, engage in collaborative thinking, and maintain attention to detail, evaluate risks, impacts and controls and promote a positive work environment. * Deep knowledge of SOX IT compliance, SOC 1/SOC 2 frameworks, IT general controls, and regulatory requirements. * Strong project management, documentation, and analytical skills; proficient in GRC (Governance, Risk, and Compliance) tools and audit software. * Ability to lead, motivate and collaborate with team members to deliver results. * Effectively communicate with internal and external clients, senior management, business owners, and other IT resources. * Innovative mind set to improve on policies and processes. * Willing to put team success ahead of individual success. * Willing and able to work the required hours to deliver results. Understand and resolve complex business issues related to security and compliance. * Any posted application deadline that is blank on a United States role is a pipeline requisition, and we'll continue to collect applications on an ongoing basis. Any posted pay range considers a wide range of compensation factors, including candidate background, experience, and work location, while also allowing for salary growth within the position. **Helping People Thrive in a Connected World** Connect with us. Bring us your best work and your brightest ideas. And we’ll bring you a place where you can thrive. Learn more at jobs.assurant.com. For U.S. benefit information, visit myassurantbenefits.com. For benefit information outside the U.S., please speak with your recruiter. **What’s the culture like at Assurant?** Our unique culture is a big reason why talented people choose Assurant. Named a Best/Great Place to Work in 15 countries and awarded the Fortune America’s Most Innovative Companies recognition, we bring together top talent around the world. Although we have a wide variety of skills and experiences, we share common characteristics that are uniquely Assurant. A passion for service. An ability to innovate in practical ways. And a willingness to take chances. We call our culture The Assurant Way. **Company Overview** Assurant is a leading global business services company that supports, protects, and connects major consumer purchases. A Fortune 500 company with a presence in 21 countries, Assurant supports the advancement of the connected world by partnering with the world’s leading brands to develop innovative solutions and deliver an enhanced customer experience through mobile device solutions, extended service contracts, vehicle protection services, renters insurance, lender\-placed insurance products, and other specialty products. **Equal Opportunity Statement** Assurant is an Equal Employment Opportunity employer and does not use or consider race, color, religion, sex, national origin, age, disability, veteran status, sexual orientation, gender identity, or any other characteristic protected by federal, state, or local law in employment decisions. **Job Scam Alert** Please be aware that during Assurant's application process, we will never ask for personal information such as your Social Security number, bank account details, or passwords. Learn more about what to look out for and how to report a scam here.