Principal Information Security GRC Analyst

We offer a flexible working policy that empowers iManage employees to balance work and well-being. We encourage two days per week in-office collaboration, offering opportunities to learn from peers in person, while also providing the flexibility needed for a meaningful work-life balance.
 
Being a Principal Information Security Analyst at iManage Means…
You are a dynamic security team leader excited and ready to take your Information Security career to the next level. You are comfortable working with a broad range of stakeholders; IT, engineering, security operations, marketing, pre sales and customer security compliance teams.
As a senior member of our Security team, you will have no shortage of interesting and varied security projects to work on and learn from.  You will lead the team with our security governance, risk and compliance objectives, author our security documentation, collect and develop periodic compliance and security metrics, build and run our compliance platform, own customer security activities including developing sales collateral and white papers, and more. In addition, you will translate external security standards into actionable requirements for operations and engineering teams. and identify security risks. This role is expected to progress to a manager position within 12-18 months.
Here is what one of our leaders, Senior Director of Security Compliance (Michael Hall), has to say about the role: Our team is dedicated to not only protecting our cloud platform but also fostering a culture that values people and their growth. We work with incredible customers across a wide variety of industries, providing unique and exciting security challenges every day. If you're looking for a role that offers the chance to work with industry experts then this is the place for you! Come and be a part of a team where your contributions are valued, and your development is a priority.”
iM Responsible For…

• Mentoring a global team of junior security analysts, including supporting recruiting and development activities.
• Managing the creation and maintainance of security policy, standards and process documentation, including customer facing security documents and material to support our sales and customer teams.
• Partnering with customer teams to ensure customer due diligence assessments, legal reviews, questionnaires and RFPs are completed to deadlines, and identify opportunities for automation and efficienies.
• Driving cultural change by implementing security training and awareness campaigns.
• Managing the opertation of our compliance platform, document repository, and customer trust centre.
• Supporting the review, design and implementation of information security and compliance standards (ISO 27K, ISO 22301, SOC2 Type 2, CSA STAR, FedRAMP) and tracking their implementation across the business.
• Tracking security control gap remediation activities.
• Identifying future compliance requirements and reporting & monitoring security and compliance objectives.
• Defining and reporting against Security KPIs, including creating dashboards and reports.
• Working closely with the Security leadership team to support Security Governance, and risk remediation.
• Supporting the oversight and execution over corporate security governance and control implementation.

iM Qualified Because I Have…

• 10+ years experience with security and compliance standards such ISO 27001, CSA STAR, NIST 800-xx, SOC 2.
• Experience Leading a team
• Held an information security compliance position (or similar), have a solid background in IT, and a good understanding of cloud computing environments including data centres, networks, operating systems and security operations.
• Strong analytical and organisational skills and a great attention to detail.
• Ability to work independently, as well and as part of a wider team, with minimal supervision.
• A positive attitude with an eagerness to learn and develop professional knowledge.
• Bachelor’s degree in Engineering, Computer Science, IT or equivalent experience.

Bonus Points if I Have...

• Security certification such as CISA, CISM, CISSP, CRISC, GIAC or similar.
• Incident Management and Business continunity management experience.
   

Don't meet every qualification listed above? Studies show that women and people of colour are less likely to apply to jobs unless they meet all qualifications. At iManage, we are committed to building a diverse and inclusive environment, and encourage everyone to show up as their full authentic selves. We welcome those that come with a growth mindset and a hunger for learning; so, if you are excited about this role but your past experience doesn't align perfectly with every qualification we encourage you to apply anyway!
iM Getting To…

• Join a rapidly evolving, industry-leading SaaS company on an exciting journey of growth and scalability! 
• Take on meaningful, high-impact challenges by leveraging cutting-edge technologies and best-in-class protocols to drive innovation. 
• Own my career path with our internal development framework. Ask us more about this! 
• Expand my skill set and earn certifications with unlimited access to LinkedIn Learning courses and interactive Microsoft courses & training. 
• Be part of a supportive and experienced team within a dynamic, inclusive, and encouraging culture. 
• Enjoy flexible work hours that empower me to balance personal time with professional commitments. 
• Collaborate in a modern, open-plan workspace featuring a gaming area, free snacks and drinks, and regular social events. 

iManage Is Supporting Me By...

• Creating an inclusive environment where you’re encouraged to help shape the culture by bringing your unique perspective, not just by fitting in. 
• Providing a market leading salary determined through a fair and consistent process, equitable for all our employees, and regularly reviewed against industry benchmarks. 
• Rewarding me with an annual performance-based bonus. 
• Providing enhanced parental leave (20 weeks for primary and 10 weeks for secondary caregiver at 100% pay) 
• Matching my pension contribution (up to 6%) 
• Offering BUPA private medical insurance & a Simplyhealth cash plan to assist with the everyday costs. 
• Providing Group life cover, including life insurance, income protection, and critical illness protection. 
• Encouraging me to make use of our top-tier flexible time off policy, which includes 25 days of annual leave and the flexibility to take further additional time off as needed 
• Having multiple company wellness days each year to prioritize mental health and well-being. 
• Providing access to RethinkCare, a global behavioral health platform that enhances personal well-being, strengthens professional resilience, and empowers parental success through expert-led training and resources. 

About iManage…
At iManage, we are dedicated to Making Knowledge Work™. Our intelligent, cloud-enabled, and secure platform is trusted by 4,100+ customers and 430,000 users worldwide, managing over 11 billion documents and 11 petabytes of data. We empower professionals across 65+ countries to unlock the full potential of their business content and communications. 
We are continuously innovating to solve the most complex professional challenges and enable better business outcomes; Our work is not always easy but it is ambitious and rewarding.
So we’re looking for people who embrace challenges. People who thrive on solving problems, pushing boundaries, and collaborating with the industry’s best and brightest. That’s the iManage way. It’s how we turn the impossible into reality, empower our employees to grow, unlock their potential, and create a meaningful impact on everything we do. 
Whoever you are, whatever you do, however you work. Make it mean something at iManage.
Learn more at: www.imanage.com
Please see our privacy statement for more information on how we handle your personal data: https://imanage.com/privacy-policy/
 
#LI-DL1
#LI-Hybrid