About Nakisa
Nakisa stands as a global leader in enterprise business solutions, specializing in Human Resources, Financial Management, and Real Estate. We are dedicated to delivering innovative, forward-thinking, and robust software solutions that propel business strategies forward. Trusted by numerous Fortune 1000 companies, our top-of-the-line solutions have consistently excelled in the market, underscoring our commitment to providing our clients with unparalleled experience.
Our team represents a rich tapestry of cultural and religious backgrounds, making diversity our greatest asset. Unified by our values of Fairness, Integrity, Service, and Humility, we foster an environment where unity and teamwork are our core strengths. At Nakisa, we continuously strive to ensure that these values guide our actions at every level.
As a company, we are in a phase of dynamic growth and prosperity, offering ample opportunities for those who join us on this journey to develop and thrive alongside us. If you are seeking a workplace where your contributions are valued and where you can actively participate in our pursuit of excellence, Nakisa welcomes you with open arms.
We’re recognized as one of the best Canadian employers, having been named one of Montreal’s top employers, as well as
one of Canada’s best employers for recent graduates.
Our people and our culture are the key to our success. If you're looking for a workplace that embraces a hybrid work model, values your contributions, and encourages active participation in our pursuit of excellence, Nakisa warmly invites you to join us.
Job Summary
We are looking for a highly motivated, collaborative, and willing to learn Security and Compliance Analyst. As a key member of our team, you will play an important role in defining, implementing, and monitoring the Security framework at Nakisa. Whenever required, you will support the team with all security related aspects, including security awareness, security incident management, threat intelligence analysis, etc. whenever required.
You will also be involved in supporting and measuring compliance, control area, process, and product, you will be driving the Nakisa’s compliance processes related to our System and Organization Controls, SOC I and SOC II, ISO 27001/17, and other standards. You will be responsible for the execution of the detailed audit programs, in defining the action items report, and in monitoring the execution of these action items and ensuring compliancy throughout the year. You will work with several technical and non-technical lines of business to assist in collecting data and evidence against industry and security standards.
This position also requires an understanding of and interest in concepts related to information security, risks, compliance, general IT controls and application controls.
What you will be doing?
- Assist the Security and Compliance Consultant in the execution of our security initiatives, setting strategic direction, managing compliance programs, driving continuous improvement activities, etc.
- Contribute by playing a key role in implementing, monitoring, and controlling the security tools and processes for our software and infrastructure on the cloud.
- Stay up to date and inform the Security and Compliance Consultant of potential threats, and any necessary actions to take. Monitor progress of such actions, when needed.
- Maintain our internal procedure and documents to ensure compliancy. Assist and support our periodic internal audits of our processes, policies, procedures, and documentation to ensure full compliancy with all departments.
- Research and check for new regulations or compliance procedures and measuring its effectiveness matters for Nakisa’s cloud SaaS solutions.
- Interfacing with auditors, articulating control implementation and impact, and establishing considerations for applying security and compliance concepts to a technical cloud environment.
- Drive the overarching annual audit plan with external auditors to support delivery of both existing and new audits and certifications.
- Assist in effectively communicating security program results, including assessment status, workflow, remediation, and reporting, to a broad audience including peers and senior leaders.
- Supporting delivery of security program and audit milestones to ensure timelines stay on target by proactively identifying and coordination resolution of roadblocks and risks.
- Assist Nakisa’s monitoring security process; spot vulnerabilities and establish strategies of mitigation.
- Support sales teams with compliance and security questions such as customer requests for information or proposals (RFI-RFP).
- Assist the execution of trainings to internal employees to raise the awareness of security and compliance, support training team with training content and materials.
What you need to bring?
- A bachelor’s degree / diploma in a relevant area of study, preferably in Computer Science, Information Security or Computer Engineering.
- Willingness to obtain CISA, CISM, CISSP or professional designation.
- 2 to 5 years of experience in cyber security, audit, compliance, with focus on leading multiple, simultaneous projects, encompassing multiple frameworks.
- Good project Management skills.
- Excellent verbal and written communication skills with both internal and external counterparts.
- Excellent interpersonal skills.
- Strong analytical and investigative skills
- Strong experience in MS Office
- Strong sense of teamwork, integrity, and self-motivation.
- Demonstrated strength in working in a high change environment.
- Effective team collaboration plus the ability to coach and mentor others.
- Strong personal characteristics as demonstrated by the following: owner’s mindset, achievement-oriented, self-controlled, self-confident, flexible, approachable, and dedicated.
Good to have
- Experience building security roadmaps based on customer requirements, compliance requirements, and ensuring that committed assessments are delivered on schedule.
- Detailed understanding of evaluating the design and effectiveness of controls and experience working with auditors/regulators for compliance assessments.
- Experience with security operations center or threat detection and response services
- Experience with threat intelligence and threat hunting
- Experience with auditing cloud infrastructure
- Experience with cloud standards and certifications (CSA, NIST)
- Experience in auditing technical controls and environments (e.g.: AWS, ITGC, SOC)
What’s in it for You
- Opportunity to join a growing and fast-paced, SaaS company.
- Chance to make a difference because you are empowered to do so.
- Work with Fortune 500 companies as your clients.
- Growth opportunities within the organization.
- Make wonderful friends and become part of the diverse and inclusive Nakisa family.
- Work with a team of incredibly talented and forward-thinking people who value hard work and know-how to celebrate the wins – No matter small or big.
- Amazing benefits & perks.
We are excited to see how you can contribute to Nakisa’s continued success and innovation. If you are passionate about making a difference and ready to take on new challenges, we invite you to apply for this role. At Nakisa, we believe in fostering a supportive and engaging work environment where every team member can thrive and grow. Apply now to join our team and help shape the future of enterprise business solutions.
We look forward to reviewing your application and getting to know you better.