Role Overview

The Information Security Analyst will support a wide range of information security, vendor management, procurement, audit, and technical security activities across the business. The role involves working closely with teams such as Legal, Procurement, IT, and Engineering to ensure security best practices are embedded in company processes and supplier relationships.

This position would suit someone with experience in roles such as IT Helpdesk, IT Operations, Risk & Compliance, Internal Audit, or Security Operations who is looking to develop a career in Information Security.

Key Responsibilities:

Commercial Support

• Assist with RFP responses and client security questionnaires.
• Support client annual security audits and due diligence requests.
• Respond to internal and external queries relating to information security controls.
• Review and interpret security-related contractual clauses, including data protection, data retention, and audit requirements.

Procurement & Supplier Due Diligence

• Support the supplier security due diligence process for new vendors.
• Participate in procurement and supplier onboarding discussions.
• Collaborate with teams to ensure suppliers meet company security standards.

Vendor Risk Management

• Maintain annual vendor due diligence reviews and documentation.
• Track supplier inventories and criticality ratings.
• Monitor performance and risk indicators for key suppliers (SLA breaches, downtime, incidents, and news).
• Support projects such as fourth-party risk assessments and information gathering.
• Monitor scope changes in vendor products and services as they become available.
• Work closely with Legal, IT, and Security teams on emerging topics such as AI usage and third-party tools.

IT & Technical Security

• Work with IT and Security teams to research new technologies and integrations.
• Support technical security initiatives and projects.
• Conduct data flow mapping and architecture documentation.
• Assist in evaluating system integrations (for example applications connected to CRM platforms).
  
  

Audit & Compliance

• Support ongoing security and compliance programmes including ISO/IEC 27001 and SOC 2.
• Assist with internal audit activities and control checks.
• Help maintain documentation and evidence required for audits and certifications.

Required Skills:

• Experience working with similar roles, ideally in IT support, security operations, compliance, or internal audit.
• Good understanding of core IT and security concepts such as:
  
  
• Endpoint management
• Identity and access management
• APIs and integrations
  
  
• Ability to work across multiple teams and communicate effectively with both technical and non-technical stakeholders.
• Strong organisational skills and ability to manage projects and documentation.
• Comfortable handling both operational tasks and more complex security projects.
• Ability to build strong internal relationships and collaborate across departments.
• Pragmatic and solution-oriented approach to information security.
• Experience working with or evaluating AI tools and products

Candidates should ideally have:

• A relevant qualification in Information Security, IT, Cybersecurity, or Computer Science, or
• Relevant professional certifications (or working toward them), such as:
• ISO 27001 Lead Implementer / Lead Auditor
• CISA or similar
• Equivalent hands-on experience in IT, security, or audit roles will also be considered.

Nice to Have:

• Experience with security audits or compliance frameworks such as ISO 27001, SOC 2, FedRAMP & ISO 42001
• Familiarity with ticketing or workflow tools such as Jira.
• Exposure to vendor risk management or supplier due diligence.

Benefits:

• Equity as we want you to have a part of what we are building 
• Unlimited Time Off Policy- A work-life balance and focus on our well-being are critical 
• Budget to set up your home office upon joining
• Annual learning budget to drive your performance and career development
• Comprehensive Private Health Insurance through Advancecare
• Work from anywhere policy up to 90 days during the year
• Team events across the year, from board games in the office to a team building in a different location

About the Role

The Associate, Treasury supports day-to-day treasury operations with a focus on cash management, bank account administration, payments, and banking relationships. The role works closely with Corporate Treasury, Fund Finance, Operations, Legal, and external banking partners to ensure timely execution of transactions, strong operational controls, and compliance with internal policies and regulatory requirements.

 Responsibilities

• Support daily cash management activities, including monitoring balances, funding requirements, and cash movements across global bank accounts.
• Partner with Accounting and internal stakeholders to investigate and resolve cash breaks and posting discrepancies.
• Assist with payment processing (wires, ACH, FX), ensuring accuracy, proper approvals, and timely execution in line with internal controls.
• Maintain and update bank account documentation, signatory lists, and authorized user access across banking portals and treasury systems.
• Support bank account openings, modifications, and closures in coordination with Legal, Compliance, and external banking partners.
• Assist with treasury system administration (e.g., Kyriba), including user access, account setup, reporting, and basic troubleshooting.
• Prepare and maintain treasury reports, trackers, and reconciliations to support management, audit, and regulatory requests.
• Partner with internal stakeholders to resolve cash breaks, payment issues, and operational inquiries.
• Support audit and control activities by providing documentation and evidence related to treasury processes.
• Contribute to process improvement initiatives aimed at enhancing efficiency, controls, and scalability of treasury operations.

Qualifications

• Bachelor’s degree in Finance, Accounting, Economics, or a related field.
• 2–4 years of experience in treasury operations, banking operations, cash management, or a related financial role.
• Familiarity with bank portals, payment processes, and treasury management systems preferred.
• Strong attention to detail and ability to manage multiple priorities.
• Strong written and verbal communication skills.
• Proficiency in Microsoft Excel and financial reporting tools.
• Execution-focused with a strong control mindset.
• Ability to operate effectively in a fast-paced environment.
• Strong understanding of operational risk.
• Collaborative and accountable working style.

We believe the best ideas and innovation happen when we are together. Employees in this role will work in the office 3 days a week with the flexibility to work remotely 2 days.

Benefits

iCapital offers a comprehensive benefits package that includes a total compensation program consisting of competitive salary, annual performance bonus, and equity for all full-time employees; healthcare with 100% employer-paid health and dental insurance.

For additional information on iCapital Network, please visit https://www.icapitalnetwork.com/about-us  Twitter: @icapitalnetwork | LinkedIn: https://www.linkedin.com/company/icapital-network-inc

About Insight Assurance
Insight Assurance is a global audit firm on a mission to transform how organizations achieve cybersecurity and compliance. Founded by former Big 4 (EY) professionals, we deliver next-generation audit services across SOC 2, ISO 27001, PCI DSS (QSA), HITRUST, CMMC (C3PAO), and FedRAMP (3PAO) frameworks.

We’re not your traditional audit firm — we’re tech-enabled, leveraging compliance automation and advanced collaboration tools to make audits faster, smarter, and more impactful for our clients.

Recognized on the Inc. 5000 and Fast 50 lists, Insight Assurance is one of the fastest-growing global audit firms, with 170+ professionals supporting nearly 2,000 clients across the Americas, EMEA, and APAC.

POSITION SUMMARY

The ISO Analyst supports the audit and assurance teams in performing ISO 27001 certification assessments and related information security audits. Working under the supervision of an Auditor, Lead Auditor, or Manager, the ISO Analyst assists in audit planning, evidence review, report preparation, and overall quality assurance.

This role requires strong attention to detail, effective communication skills, and a foundational understanding of management systems and information security principles.

KEY RESPONSIBILITIES

General Audit Support

• Ensure that all internal processes are followed correctly and consistently.

• Assist in the creation of audit programs and plans for clients and upcoming audits.

• Support evidence classification, review, and sampling activities.

• Take detailed notes during audits and assist in preparing high-quality reports.

• Send recap and follow-up communications as required.

• Collect statistics and support KPI reporting.

• Communicate effectively with stakeholders at all organizational levels using professional language and terminology.

• Maintain ethics, fairness, and accuracy in all audit documentation and reporting.

• Protect confidentiality of personally identifiable information (PII) and intellectual property (IP) belonging to both the firm and clients.

• Demonstrate professionalism and responsibility in all interactions.

Administrative & Coordination Tasks

• Handle client ingestion and onboarding activities.

• Perform HubSpot data scrubbing and updates.

• Register new engagements in Asana and coordinate Insight ONE transfers (in or out).

• Create SharePoint folders and upload Evidence Lists (EL).

• Follow up on CUP (Client Upload Portal) submissions.

Audit Planning Support (in collaboration with the ISO Manager)

• Follow up on CUP status and pending uploads.

• Send planning call recaps and assist with scheduling.

• Communicate auditor assignments and update Asana tasks.

• Collect and report metrics on Turnaround Time (TAT) for audit plan delivery.

Audit Execution Support (in collaboration with ISO Auditors)

• Ensure auditors have access to necessary GRC platforms and client systems.

Audit Reporting & Quality Assurance (in collaboration with ISO Manager)

• Collect metrics on TAT for archive submissions.

• Register findings in the Universal Registry of Findings.

• Complete archive QA forms and support non-technical QA reviews, including:

  • Audit Report

  • Audit Plan

  • Audit Program

  • Registry of Findings

Certificate & Registry Management

• Handle certificate registration in the appropriate database.

• Maintain IAF CertSearch registrations and updates.

Knowledge Requirements
• Organizational structures, governance, and workplace practices.
• Information and data systems, documentation systems, and IT fundamentals.
• Audit principles, practices, and techniques in accordance with ISO standards.
• Management system standards and normative documents required for certification.
• Certification Body (CB) processes and procedures.
• Industry terminology, practices, and expectations relevant to the client’s business sector.
• Common products, processes, and operations across industries to understand client context.
• Application of management system requirements to various organizational types.
• ISMS-specific documentation structures and interrelationships.
• Information security management tools, methods, and techniques.
• Information security risk assessment and risk management principles.
• ISMS processes and current information security technologies.
• ISO/IEC 27001 requirements and implementation principles.
• ISO/IEC 27002 controls (and sector-specific standards if applicable), including:
• Information security policies
• Organization of information security
• Human resource security
• Asset management
• Access control and authorization
• Cryptography
• Physical and environmental security
• Operations and IT service security
• Communications and network security
• System acquisition, development, and maintenance
• Supplier relationships and outsourced services
• Information security incident management
• Business continuity and redundancy planning
• Compliance and information security reviews
• Legal and regulatory requirements in information security by geography and jurisdiction.
• Information security risks and technologies relevant to the client’s industry.
• The impact of organization size, structure, and governance on ISMS implementation.
• Legal and regulatory requirements applicable to products or services.

Key Competencies
• Attention to detail and analytical thinking
• Written and verbal communication
• Integrity, confidentiality, and professionalism
• Understanding of ISO/IEC 27001 and 27002 standards
• Organizational and time management skills
• Team collaboration and adaptability
• Continuous learning and improvement mindset

What We Offer
• Opportunity to work with global experts in cybersecurity and ISO assurance.
• Exposure to top-tier clients and diverse industries.
• Professional development and certification support.
• Collaborative and remote-friendly work environment.
• Competitive compensation and growth opportunities.

 Privacy Notice CCPA: 

• Insight Assurance shares your personal data/information with Greenhouse recruiting because this is the tool we use for the recruitment process.
• Insight Assurance does not sell personal data/information under any circumstances.
• You may exercise your rights under personal data protection legislation by reaching out to us via: HR@insightassurance.com or submit a request via mail at 400 N Tampa St. 15th Floor Suite 122, Tampa, FL 33602

Privacy Notice GDPR:

This notice informs you about the categories of Personal Data/ Information and the Purpose and Scope of Processing Activities to be undertaken by Insight Assurance (we, us, our), under its job application and recruitment process.

We resort to Greenhouse.com as the platform that supports our recruitment process, and therefore your Personal Data/ Information will be Processed on this tool (hosted, shared with, cross-referenced, accessed by our team); we have in place contractual terms and the commitment of Greenhouse.com that ensures the Security and Confidentiality plus Purpose limitation with regards to the Processing of your Personal Data.

When you reply to one of your job postings, you voluntarily and freely submit your Personal Data to us; this, allied with the fact that the Processing by us (and over Greenhouse.com) of that Personal Data has the sole Purpose of validating your application and proceeding with the inherent scrutiny and decision, allows us to argue having Legitimate Interest as the applicable Legal Basis to undertake the Processing of your Personal Data under this scope.

We are a U.S. based company, hence some or all Personal Data pertaining to you will be hosted in the U.S.

The categories of Personal Data under Processing consist of:

• Identification
• Contact
• Education and Professional
• Interview performance
• Evaluation

You may exercise several Rights as determined under applicable Personal Data Protection legislation, in short:

• Right of Access – meaning getting information about the Personal Data under Processing by us, except for the information you already know;
• Right of Erasure – you may ask for us to erase all Personal Data pertaining to you under Processing; this may imply you being excluded from the recruitment process, for without information we cannot proceed with it;
• Right of Opposition or Restriction of Processing – you may ask us to stop some Processing or restrict the Processing of some Personal Data, this may imply you being excluded from the recruitment process, at our sole discretion also for without information we cannot proceed with it;
• Rectification – you can rectify your Personal Data at anytime 

We are looking to bring on a Sr. Analyst, FP&A for this role. This individual will be responsible for partnering cross-functionally within a fast-moving technology company and its senior management to build annual budgets, manage forecasts, and provide decision support through financial analyses to ensure optimal returns on strategic investments. This is a key position providing guidance on financial and operational matters across the entire organization.

Duties and Responsibilities: 

• Support the annual budget, quarterly forecast and long-term strategic planning processes for our Sales and Marketing business unit 
• Own end-to-end tracking of Sales and Marketing software spend by partnering with IT, Procurement and business teams 
• Lead monthly accrual process for Sales and Marketing and other operating expenses by partnering with Accounting to ensure accurate and timely expense recognition in accordance with GAAP 
• Design and refine detailed financial models that forecast and analyze functional costs in order to fully understand sources of variance and, ultimately, improve forecast accuracy 
• Conduct in-quarter puts & takes review sessions – ensure that the organization can flex and react to short-term budget surpluses/deficits, including developing and maintaining KPIs for all aspects of the Sales and Marketing organization 
• Prepare monthly and quarterly management reporting - analyze financial results, distill/synthesize key trends, assess current and future business risk, and communicate key messages to senior management 
• Build and maintain relationships with cross-functional teams to synthesize and integrate updates relating to variances in actual procurement activity relative to budget forecasts 
• Support executive management by providing timely ad hoc reporting on critical issues 
• Become embedded with business partners across the company, establishing trust, building relationships and gaining a deep understanding of relevant drivers
  
  

Qualifications: 

• 3+ years of relevant finance experience preferred; SaaS experience strongly preferred 
• Curious mindset - Passion to understand data models and how data flows as this is critical in identifying process improvements and creating scale within FP&A
• Ability to influence at all levels of an organization with an emphasis on partnering with the various business leaders, especially managing upwards; actively identify blind spots and opportunities to Finance Sr. Manager/ DirectorAdaptive insights
• Identify self-training needs 
• Experience with headcount reconciliation – Personnel, To-Be-Hired and Term Headcount 
• Knowledge of Sales/Marketing and applicable key metrics – eg, ARR, MRR, pipeline, conversion/win rates, CAC, LTV 
• Strong financial and operational planning skills 
• Excellent communication skills (written and verbal) with experience developing and delivering presentations 
• Expertise in building Excel-based financial models, with an emphasis on aggregating and analyzing data to provide actionable insights

About the Opportunity

You will have the opportunity to develop the experience of planning and operationalize daily schedules, in order to accomplish the targets. Work in a different and growing innovative environment that mixes healthcare with AI in a market in expansion. Develop experience of working with a multicultural team local and remote.

Responsibilities

• Analyze outputs generated by artificial intelligence from Coronary CTA exams.
• Evaluate Coronary CTA exams for image quality.
• Perform administrative duties as required.
• Participation in continuous improvement projects
• Comply with process and quality standards.

Requirements

• Medical imaging and radiotherapy university Degree
• Availability to work different shifts
• High attention to detail
• Great interpersonal skills - must be able to work well in a team environment
• Desire and ability to learn new technologies - willing to learn
• Coronary CTA or 3D post-processing experience is a plus 

Salary:

€1460.00 (monthly)

Role Summary

As the Product Manager for Frontend and Design Platform, you sit at the intersection of UX excellence and systems engineering. You don’t just care that a button looks good; you care that the button is a robust, accessible, and reusable component that enables 50+ developers across 10+ different internal apps to build consistent experiences at speed.

In this role, you will own the ComplyAdvantage Frontend and Design (Platform). You’ll be responsible for the "Lego bricks" of our platform, ensuring that whether a developer is building a high-stakes investigation dashboard or a simple settings page, the UI is intuitive, invisible, and efficient. Your work directly empowers our product squads to ship high-quality features faster, while ensuring our users - financial crime analysts - can do their jobs with total trust and zero friction.

Key Responsibilities

• Own the Frontend Platform Roadmap: Define the strategy for our UI component library and frontend patterns, transitioning from "building pages" to "building systems."
• Champion Efficiency & Trust: In the world of B2B compliance, "delight" means speed and accuracy. You will optimize our frontend infrastructure for analyst efficiency rather than flashy B2C animations.
• Drive Deep User Discovery: Regularly sit with internal and external users (analysts and compliance officers) to observe workflows and identify where UI friction hinders financial crime detection.
• Scale Developer Velocity: Define and monitor metrics for component adoption and developer experience (DevEx), ensuring our frontend platform reduces "time-to-market" for feature teams.
• Bridge Design and Engineering: Lead your squad in translating Figma prototypes into production-ready, accessible, and themeable React components (or equivalent).
• Systemic Prioritization: Balance the immediate needs of "Flagship" product squads with the long-term health and coherence of the global design system.
• Responsible for coordinating the design pipeline with Product PRD requirements and processes, ensuring design work is aligned with PRD needs.
• Drive the evolution of the overall UI and UX to meet the changing needs of our Clients in the advent of AI co-pilots and agents. 

Required Qualifications

• 4+ years of Product Management experience, with at least 1–2 years focused on Design Systems, Frontend Platforms, or Internal Developer Tools.
• B2B Experience is Essential: A proven track record of building complex, data-heavy interfaces where utility and trust are the primary goals.
• Systems Thinking: Demonstrated experience with Atomic Design principles and managing shared component libraries.
• Discovery Mastery: Expert in using tools like Pendo, Hotjar, or Figma to conduct research and validate frontend hypotheses.
• Technical Fluency: Ability to discuss APIs, CSS architecture, and frontend performance trade-offs with senior engineers.
• Bachelor’s degree in a relevant field (e.g., Computer Science, HCI, or Design).

About You

• The "Lego" Builder: You think in components, not templates. You get excited about the scalability of a "Text Input" that will be used for the next five years.
• The Empathetic Observer: You enjoy the "detective work" of watching a user struggle with a workflow and finding the systemic UI fix that solves it for everyone.
• B2B over B2C: You understand that our users are professionals doing a high-stakes job. You prefer "invisible" UI that helps them find criminals over "viral" UI features.
• The Bridge: You can speak the language of a UI Designer on Monday and a Frontend Engineer on Tuesday, acting as the glue between aesthetic vision and technical reality.
• Outcome-Driven: You value adoption rates and "time-to-ship" metrics just as much as pixel-perfect execution.

What Success Looks Like

• In 90 days: You’ve audited our existing component library, established a feedback loop with the Design and Engineering chapters, and identified the top three friction points in our current frontend workflow.
• In 6 months: You have delivered a core set of standardized components adopted by at least three major product squads, significantly reducing their frontend development time.
• In 12 months: The ComplyAdvantage Design System is the "source of truth" for all UI. You’ve established a clear contribution model where other teams can add to the system, and you are recognized as the guardian of our platform’s visual and functional consistency.

What’s in it for you?

• Equity as we want you to have a part of what we are building. 
• Unlimited Time Off Policy. A work-life balance and focus on our well-being are critical to keeping us performing at our best. 
• We embrace a hybrid approach that requires employees to be in the office for two days a week. We strongly believe that this approach fosters collaboration and enables the building of meaningful relationships.
• ​​Comprehensive Medical Insurance. Your health is our priority; we’ve got you covered.
• You will also get a new starter budget to kit out your home office. 
• Opportunity to work on innovative projects with smart-minded people keen to share their knowledge and continuously improve. 
• Annual learning budget (prorated based on start date) to drive your performance and career development. 
• We provide everyone with the latest modern laptops and tech stacks to ensure you’re never slowed down by your tools.

The Role

The Senior GRC Privacy Analyst sits within the Security Governance, Risk, and Compliance (GRC) team and plays a key role in advancing Iterable’s privacy program and supporting the organization’s security and compliance risk management efforts. 

This hands-on, senior individual contributor is responsible for privacy operations and participates in rotational responsibilities, including third-party risk reviews, audit support, and customer trust and privacy inquiries. The role partners closely with Legal, the DPO, Security, Product, and business teams to ensure privacy and security risks are identified, assessed, and managed consistently, in alignment with privacy and regulatory requirements.

Key Responsibilities:

• Lead privacy operations within the Security GRC function by developing, implementing, and maintaining privacy program processes and documentation, including:
• Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs)
• Records of Processing Activities (ROPA) and data inventories
• Data Subject Access Requests (DSARs), in coordination with Legal, HR, and Marketing
• Privacy and compliance risk assessments aligned with GDPR, CCPA/CPRA, HIPAA, and other applicable global privacy laws
• Support privacy-by-design practices by embedding privacy considerations into GRC workflows, risk assessments, and third-party reviews
• Support the privacy risk register by providing input and context on privacy and security risks, and ensure key stakeholders, including Legal, the DPO, and business teams, are kept informed of risk status and updates
• Assist with third-country data transfer risk assessments (Transfer Impact Assessments), Legitimate Interest Assessments (LIAs), and related privacy evaluations in consultation with Legal and the DPO
• Participate in GRC rotational responsibilities, including third-party security and privacy vendor reviews and support for internal and external audits (e.g., SOC 2, ISO 27001), including evidence collection and remediation tracking
• Provide rotational support for customer trust and privacy inquiries, partnering with Sales and Customer Success on customer-requested DPIAs, privacy questionnaires, and data protection assessments
• Collaborate cross-functionally with Legal, the DPO, Product, Engineering, Security, and business teams to operationalize privacy and security requirements in a scalable, risk-based manner by providing innovative solutions and automation initiatives

The Ideal Candidate Will Be/Have:

• Strong experience with GDPR and global privacy operations in a SaaS or technology environment
• Hands-on experience with PIAs/DPIAs, ROPA, DSARs, and privacy risk assessments
• Experience with third-party risk management and security reviews
• Experience supporting customer trust and privacy inquiries
• Ability to analyze complex privacy and security issues and provide clear, actionable recommendations
• Familiarity with SOC 2, ISO 27001, and ISO 27701 audit processes
• Strong cross-functional communication and stakeholder management skills, including the ability to explain privacy and security risks to technical and non-technical audiences
• Highly organized with strong attention to detail and the ability to manage multiple priorities under tight deadlines
  
  

Nice to have/Bonus Points::

• Privacy certifications (CIPP/E, CIPP/US, CIPM, or similar)
• Experience with US state privacy laws (HIPAA, CCPA and others)
• Experience working at a SaaS company 

What we offer 

• Competitive salaries & meaningful equity
• Private Medical Insurance
• Life/Risk Assurance
• Meal Allowance: 8.55€ per day
• Community Days (days for us to give back to the community) 
• Paid Annual Leave (22 days)
• Global Lifestyle Reimbursement Account
• Paid Sabbatical
• Complete laptop workstation