Security Compliance Analyst

• How You’ll Support Our Mission 

  As an ESO Security Compliance Analyst, you will serve as a point of contact for both internal and external stakeholders to ensure that ESO systems are compliant with our policies and standards.  Our customers, regulators and stakeholders depend on our ability to protect customer data, so we need to be able to demonstrate our security posture at all times.   

  You will be responsible for understanding our international compliance obligations (HIPAA, GDPR, StateRAMP, etc) and ensuring that robust practices are in place to demonstrate our compliance with those obligations.  Where possible, we want to utilize automated continuous compliance reporting across all of our systems.   

  In this capacity, you will report to the Director of Security Compliance within our Security and IT team. You will be working across all products, systems and technologies. 

    

  What You’ll Be Doing - the day to day 

  When working in this role, you will oversee the compliance of key security controls against a range of international compliance obligations, relating to all of the ESO products and systems.  You will be working with internal and external teams to source and provide this compliance view.  You will be working closely with external auditors for submissions and audits such as SOC2 and StateRAMP.   

  • You will support the external validation efforts of auditors such as SOC2, StateRAMP and the UK Nation Health Service 
  • You will have primary responsibility for the compliance of a subset of controls across all ESO systems 
  • You will work with security, IT and Technology teams to verify, validate, automate and report on compliance 
  • You will gain and maintain an understanding of ESO’s products and systems, and stay apprised of new product features. 

   

  Who You Are - the essentials  

  • You have a good technical understanding of cloud environments, capabilities, products, and services 
  • You have a strong understanding of IT security concepts, practices, methods, and tools 
  • You have a good technical understanding of how software, web applications and SaaS environments work 
  • You have a general understanding of industry standards for compliance such as NIST, HIPAA/HITECH, and SOC 2 Type II requirements 
  • You quickly learn how products function and translate that information into questionnaire and assessment responses 
  • You pay attention to detail, accept accountability and ownership 
  • You are organised with an ability to manage multiple deadlines and projects simultaneously 
  • You have experience with Microsoft Office (Word, Excel, PowerPoint, etc) 

    

  Who You Are - the desirables (It’s a plus if you have):  

  • Training in IT security controls – either through work experience or educational work  
  • IT audit or similar experience in evaluating products and identifying controls 
  • Possess or actively seeking information security certifications such as CISSP, CRISC, CISM, CISA, or an equivalent 
  • Have working within the Microsoft Azure environment  
  • Ability and willingness to produce and maintain documentation and status reports 

   

  Benefits & Perks 

  You will have fantastic benefits at ESO including but not limited to; life insurance, enhanced short and long term sick pay, income protection insurance, a generous pension contribution, private medical insurance including optical and dental, a health cash plan, an annual health and wellness allowance, enhanced paternity leave and pay, enhanced adoptive pay, enhanced maternity pay and more! 

   

  About ESO 

  ESO is a fast-paced, growing data, technology, and research company passionate about improving community health and safety through the power of data. We pioneer innovative, user-friendly software to meet the changing needs of today’s EMS agencies, fire departments, and hospitals. We’re small enough to be nimble and fun, but big enough to be a great place to work. We serve thousands of customers out of our six US offices and our Belfast, Northern Ireland office.  

   Are you ready to Make a Difference? 

   

  ESO is committed to creating a diverse and inclusive work environment and is proud to be an equal opportunity and affirmative action employer. We invite you to consider opportunities at ESO regardless of your gender; gender identity; gender reassignment; age; religion; race; national origin; political affiliation; sexual orientation; disability; veteran status; or other non-merit factor.