Armis Logo

Armis

Cybersecurity Analyst - Commercial Compliance

Posted 6 Days Ago
Remote
Hiring Remotely in Canada
Senior level
Remote
Hiring Remotely in Canada
Senior level
Support governance, risk and compliance by collecting and managing audit evidence, document control implementations, update policies, assist vendor risk management, and complete security questionnaires while implementing automation (including AI) to streamline continuous monitoring and evidence collection.
The summary above was generated by AI

Armis, the cyber exposure management & security company, protects the entire attack surface and manages an organization’s cyber risk exposure in real time. In a rapidly evolving, perimeter-less world, Armis ensures that organizations continuously see, protect and manage all critical assets - from the ground to the cloud. Armis secures Fortune 100, 200 and 500 companies as well as national governments, state and local entities to help keep critical infrastructure, economies and society stay safe and secure 24/7.

Armis is a privately held company headquartered in California.

As Armis rapidly scales its operations, we are seeking a motivated Cybersecurity Analyst to join our Governance, Risk and Compliance team and directly support our commercial compliance efforts. This role will be an integral part of maintaining and strengthening our overall security posture. You will focus on the foundational work of security, assisting our team in gathering essential evidence, documenting control implementation across our platforms, and ensuring the smooth operation of our key security processes.
You will collaborate closely with various departments and end-users across the company, primarily supporting the vital functions of the Office of the Chief Information Security Officer (OCISO) team.
What you'll do:

  • Audit and Assessment Support: Provide direct support for external and internal audit efforts, specifically focusing on frameworks such as SOC 2 Type 2, ISO 27001, ISO 27017, ISO 27018,  and ISO 42001. 
  • Evidence Management & Monitoring: Execute and document procedures for continuous monitoring and evidence gathering. You will also implement automated solutions, including utilizing AI, to effectively reduce manual efforts associated with repetitive evidence collection tasks, ensuring security artifacts are accurately captured and readily available.
  • Policy and Documentation: Review, edit and update internal security policies, standards and procedures to ensure they accurately reflect current operational controls and compliance requirements.
  • Vendor and Supply Chain Risk Management (SCRM): Assist in the supply chain risk management program by tracking vendor compliance documentation, reviewing vendor security posture, and maintaining the vendor risk register.
  • Risk and Sales Support: Participate in internal security audits and support the business development team by completing security questionnaires for Requests for Proposal (RFP), ensuring accurate and compliant representation of our controls.

What we expect

  • 5+ years of experience in a security, IT audit, GRC or related technical field.
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field; equivalent professional experience will be considered in lieu of a degree.
  • Maintain industry certifications such as CompTIA Security+ and work toward advanced certifications such as (ISC)² CISSP.
  • Foundational understanding of diverse regulatory environments and major security frameworks and compliance standards (e.g., ISO, SOC, HIPAA, SOX, NIST, FedRAMP, GovRAMP, DoD IL 5/6 PCI DSS).
  • Foundational understanding of enterprise IT and OT/ICS environments, including network protocols, operating systems, cloud platforms and security technologies.
  • Foundational understanding of core cloud technologies, particularly security concepts and services within AWS and GCP.
  • Strong organizational skills, exceptional attention to detail, and the ability to manage documentation effectively.
  • Excellent written communication skills, with experience reviewing and editing formal technical documents and policies.

Preferred Skills

  • Prior experience in directly supporting security audits for the frameworks noted above.
  • Familiarity with the FedRAMP authorization process and compliance requirements.
  • Detailed understanding of core security concepts, including data encryption, logical access controls, and boundary security mechanisms.
  • Working experience with Linux operating systems.
  • Experience supporting security or compliance efforts in AWS and GCP cloud environments.
  • Experience working with a global team where the majority of team members are remote.
  • Experience working with task planning tools like JIRA and Asana.
  • Experience managing content throughout its lifecycle in the Microsoft Office 365 and Google Workspace ecosystems.
  • Experience using GRC automation and evidence management platforms such as Anecdotes, Drata, or similar tools to streamline compliance processes and maintain continuous monitoring.

Pay range: 140,000 - 160,000


The salary range listed does not include other forms of compensation or benefits (e.g. i.e. bonuses, commissions, stocks, health insurance benefits, etc.) offered to candidates. Visit our careers site for more information on benefits at Armis.

The choices you make in your career journey matter. You want to do interesting work in an important field while also having time to live your life, which is why we place so much value in your life-work balance. Armis sets you up for success with comprehensive health benefits, discretionary time off, paid holidays including monthly me days, and a highly inclusive and diverse workplace. Put your unique experiences and perspective to work in an environment where they will enable you to thrive, grow, and live your life with integrity.

Armis is proud to be an equal opportunity employer. We never discriminate based on race, ethnicity, color, ancestry, national origin, religion, sex, sexual orientation, gender identity, age, disability, veteran status, genetic information, marital status or any other legally protected (or not) status. In compliance with federal law, all persons hired will be required to submit satisfactory proof of identity and legal authorization.

Please click here to review our privacy practices.

Similar Jobs

58 Minutes Ago
Easy Apply
Remote
Canada
Easy Apply
Mid level
Mid level
Artificial Intelligence • Cloud • Edtech • HR Tech • Sales • Software • Generative AI
Drive revenue in the mid-market segment through sales methodologies, client meetings, and mastering product demos while contributing to the company culture.
Top Skills: B2B SaasHr Tech SolutionsLearning & Development Market
4 Hours Ago
Easy Apply
Remote
Canada
Easy Apply
Senior level
Senior level
Big Data • Fintech • Mobile • Payments • Financial Services
Lead design and execution of enterprise career and talent strategies. Build career frameworks, internal mobility, success profiles, and change management to connect employee growth with business capability planning. Partner with senior leaders and cross-functional teams to influence talent decisions, drive adoption, and create scalable, transparent approaches for performance, development, and organizational capability.
4 Hours Ago
Easy Apply
Remote
Canada
Easy Apply
Mid level
Mid level
Big Data • Fintech • Mobile • Payments • Financial Services
Lead and improve Affirm's Engineering University Program end-to-end for interns, apprentices, and new graduates. Design and execute programming and events, manage communications, logistics, and participant support, partner with University Recruiting and cross-functional stakeholders, measure outcomes using feedback and metrics, and drive continuous program enhancements.

What you need to know about the Ottawa Tech Scene

The capital city of Canada and the nation's fourth-largest urban area, Ottawa has proven a rapidly growing global tech hub. With over 1,800 tech companies, many of which are leaders in their sectors, the city's tech talent now makes up more than 13 percent of its total workforce. This growth is driven not only by the big players like UL Solutions and Dropbox, but also by a thriving startup ecosystem, as new businesses emerge to follow in the footsteps of those that came before them.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account