Information Security and Compliance Analyst at Veracity Insurance

At Veracity we aim to be a different kind of insurance partner one that is free from outside investors venture capital or the pressures of a corporate parent. Ours is a culture of empowerment one that believes in effort results and accountability. We believe that transparency fosters trust trust fosters growth and that growth drives innovation. Our commitment to rigorous evaluation and relentless execution lead to rapid evolution.We answer only to the small business owners we serve and this independence allows us to stay focused on what matters most: helping their businesses thrive by providing expert guidance and best-in-class insurance policies.Were growing fast and want you to be a part of it!Were seeking a talented detail-oriented Information Security and Compliance Analyst to join our team. Reporting to the Technical Operations and Information Security Manager this role is responsible for supporting the organizations cybersecurity posture by maintaining and enhancing security policies controls and monitoring systems and ensuring compliance with frameworks such as SOC 2 and PCI DSS to protect company and client data.Key ResponsibilitiesStrengthen the organizations cybersecurity posture by implementing maintaining and improving security policies standards and technical controlsMonitor security tools and system activity to identify investigate and escalate potential threats or vulnerabilitiesSupport vulnerability management including performing scans tracking remediation and validating fixesMaintain accurate audit-ready documentation and coordinate evidence collection for SOC 2 PCI DSS and other compliance frameworksSupport incident response processes including triage documentation and post-incident follow-upAssist with user access reviews control testing risk assessments and security awareness effortsCollaborate with IT Engineering and Compliance teams on secure configurations remediation plans and cross-functional security initiativesParticipate in routine policy procedure and control reviews to ensure alignment with regulatory requirements and security best practicesMaintain detailed logs and reports of security activities metrics and compliance obligationsIdentify opportunities to strengthen controls streamline processes and enhance overall security program maturityRequired to perform other duties as requested directed or assignedRequirements and QualificationsBachelors degree in information systems IT Cybersecurity or a related field23 years of experience in security compliance auditing or governance (SOC 2 experience preferred)Strong integrity attention to detail and accountability in handling sensitive or regulated informationProactive problem-solving skills with the ability to anticipate and address risks effectivelyStrong collaboration and communication skills with experience working across technical and compliance teamsAbility to remain composed and effective under pressure including during audits and security incidentPerksHealth dental and vision plansAmazing work-life balance with 4 weeks of Paid Time Off10 Paid Company Holidays with 2 floating holidays401K Programs with employer matchPersonal assistance programs for support in a healthy personal and work lifeWhy VeracityHere at Veracity youll be part of a team of trailblazers and visionaries. Were not just revolutionizing the way people do insurance; we are creating a whole new paradigm. Here you will experience a vibrant and inclusive workplace where your ideas matter! With us you have a chance to:Engage in groundbreaking projects that are reshaping the insurance landscapeCollaborate with a group of dedicated like-minded professionalsExperience a culture that prioritizes growth and developmentCompensation Range: $75k/yr - $85k/yr We are proud to be an equal-opportunity employer. We are committed to providing equal opportunities to all qualified applicants regardless of race color religion sex national origin disability or any other legally protected characteristics.If you need accommodation please let us know during the interview process. Required Experience:Manager Key Skills IT Experience,Splunk,IDS,Cybersecurity,FIPS,PCI,NIST Standards,Information Security,Encryption,FISMA,RMF,Siem Employment Type : Full-Time Experience: years Vacancy: 1