Compliance Analyst - PCI DSS, ISO27001

Full Time
11 months ago

LivePerson (NASDAQ:LPSN) is a leading customer engagement company, creating digital experiences powered by Curiously Human AI. Every person is unique, and our technology makes it possible for companies, including leading brands like HSBC, Orange, and GM Financial, to treat their audiences that way at scale. Nearly a billion conversational interactions are powered by our Conversational Cloud each month.

You'll be successful at LivePerson if you are excited to build something from the ground up. You excel by finding daily opportunities to grow at the same pace as the technology we're building, and you build partnerships that improve our business. Likewise, you're someone who sees feedback as a chance to learn and grow and believe decisions powered by data are the norm. You care about the wellbeing of others and yourself.

Overview:

Compliance Analyst is a key member of the Global Security Team supporting the execution of LivePerson’s global GRC program. 

The purpose of this position is to provide information security and compliance expertise for development, support and implementation of the information security compliance program, with a focus on managing audits and assessments.

Responsibilities require expertise to ensure effective compliance to regulations; control testing; awareness and education; and development of policies, standards and guidelines to align with the LivePerson Global Security Team’s mission - “To enable LivePerson, to be LivePerson  - Securely”.

Our Compliance Analysts report to the Compliance leadership team and are a part of LivePerson’s highly talented and Global Security Team.

You will:

Compliance

  • Collaborate with LivePerson teams to ensure we are implementing security best practices that meet relevant regulatory compliance requirements. 
  • Support the strategy for managing an increasing number of audits, compliance checks and assessment processes. 
  • Manage testing and analysis of the LivePerson control environment against industry and regulatory governance frameworks.
  • Assist in the development of strategies to address Security awareness and training for all stakeholders and provide guidance/instruction to other teams as needed to obtain those goals.
  • Internally assess, evaluate and make recommendations to management regarding the adequacy of LivePerson’s security controls. 
  • Produce metrics, reports and dashboards as needed to provide insight/communication to various stakeholders.

Audit

  • Collaborate with internal/external audit partners, customers/brands and other consultants as appropriate on required security assessments, audits and certifications.
  • Work with the respective auditors/assessors to keep focus on scope of audits, timelines, resource scheduling, reporting and remediation requirements. 
  • Provide guidance, evaluation and advocacy for all audit responses.

Shared Responsibilities

  • Assist with various risk management functions to ensure identification, compliance and remediation are monitored/obtained.
  • Support Compliance team with other standard daily processes/ticket requests, as need arises.
  • Maintain excellent relationships with all business partners and provide a consistent perspective that continually puts LivePerson into the best security posture possible.
  • Perform other duties as assigned to ensure the smooth functioning of the Global Security Team and maintain the reputation of LivePerson as a valued business partner to its customers.
You have:
  • Minimum of 5 years experience in managing compliance audits, assessments and certifications  with a risk based approach.
  • Knowledge of information security risk management frameworks and compliance practices (e.g., PCI DSS, HITRUST, SOC 2, ISO27001, NIST 800-171 etc.).
  • Excellent interpersonal communication, and presentation skills, including formal report writing experience for all levels of management.
  • Adept at understanding business focus and processes with the ability to inject Compliance/Security concepts into the business through teamwork and influence
  • Exceptional oral and written communication skills to be used with all levels of management, across various business units, and both internally and externally, with an ability to express information security concepts in simplified terms.
  • Operate with a high degree of independence with regard to project management activities, including development of project plans, customer meetings and audit sessions.
  • Candidates must be willing to undergo background checks to verify their identity, character, qualifications, skills and experience
Benefits:
  • Health: Medical, Dental and EAP.
  • Time away: 28 days holiday + up to 5 Care Days.
  • Financial: Workplace Pension Scheme, Employee Stock Purchase Plan.
  • Family: Paid Parental Leave
  • Development: Native AI learning.
  • Additional: Work from home incentives, group life insurance, exclusive perks and discounts and more.
Why you'll love working here:

Your entrepreneurial spirit will be supported. We love team members who chase down their big ideas, become experts, help colleagues, and own their work. These four company values guide our continued, holistic growth as individuals, as teams, and as a global organization. And to further make our point, let's just say we're very proud to be on Fast Company's list of Most Innovative Companies and Newsweek's list of most-loved workplaces.

Belonging at LivePerson:

At LivePerson, people from diverse backgrounds come together to make an impact and be their authentic selves. One way we share and connect is through our employee resource groups such as: Live In Color, LP Proud, and Women In Tech. We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local law.

We are committed to the accessibility needs of applicants and employees. We provide reasonable accommodations to job applicants with physical or mental disabilities. Applicants with a disability who require a reasonable accommodation for any part of the application or hiring process should inform their recruiting contact upon initial connection.