IT Security Analyst - Risk and Compliance

Service Center

CSCS TX

About Caliber Collision

Caliber Collision didn’t get to be the nation’s largest collision repair company by accident. It’s taken an unyielding commitment to be the collision repair center of choice in every community we serve a vision that began when our company was founded in 1997 and continues strong to this day.

To achieve this, we’re not just part of the collision repair industry. We lead it. Not only by setting new standards in customer service, but also by implementing cutting edge technology at every turn.

This is how we’ve built a company with more than 1,700+ convenient, state-of-the-art repair centers, and growing. And why hundreds of thousands of people entrust their vehicles to us every year.

So, when you hand over your keys to us, you’re taking the first step toward restoring the rhythm of your life it’s what drives us.

Opportunity

Reporting directly to the Director, Information Security, the Security Analyst specialized in Risk and Compliance to join our dynamic team.

In this role, you will be responsible for ensuring that our organization complies with relevant cybersecurity regulations, standards, and best practices.

You will assess our current cybersecurity posture, identify compliance gaps, and develop strategies to address them. The ideal candidate will have a strong understanding of cybersecurity principles, regulations such as SOX, CCPA, HIPAA, PCI DSS, and experience in conducting compliance audits and assessments.

Responsibilities

• Assist with the design, development, and execution of compliance program to ensure that technology and business processes meet compliance requirements.
• Assist with managing all aspects of the compliance program, including gap assessment, risk management, risk mitigation, monitoring / auditing, policy administration, addressing violations, and performing corrective actions.
• Conduct regular assessments of our organization's cybersecurity policies, procedures, and controls to ensure compliance with relevant regulations and standards.
• Identify compliance gaps and areas for improvement in our cybersecurity posture through comprehensive gap analysis.
• Stay up-to-date with changes in cybersecurity regulations, standards, and best practices, and ensure that our organization complies with them.
• Develop and maintain cybersecurity policies, procedures, and guidelines to ensure compliance with regulations and standards.
• Support internal and external compliance audits by providing documentation, evidence, and assistance as needed.
• Assist in identifying cybersecurity risks and vulnerabilities that could impact compliance and recommend strategies to mitigate them.
• Develop and deliver cybersecurity training and awareness programs to educate employees about compliance requirements and best practices.
• Support incident response activities related to compliance incidents, including investigation, analysis, and reporting.
• Assess the cybersecurity posture of third-party vendors and partners to ensure compliance with contractual requirements and industry standards.

Requirements

• Bachelor’s degree in computer science, Information Technology, or a related field. Master's degree preferred.
• Certification in cybersecurity (e.g., CISSP, CISM, CISA) is highly desirable.
• Minimum of 3 years of experience in cybersecurity, with a focus on compliance.
• Strong understanding of cybersecurity principles, regulations (e.g., SOX, COBIT, CCPA, HIPAA, PCI DSS), and standards (e.

g., NIST Cybersecurity Framework).

• Experience in conducting compliance audits, assessments, and gap analyses.
• Proficiency in risk management frameworks and methodologies.
• Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
• Strong analytical and problem-solving skills, with attention to detail.
• Proficiency in Word, Excel, PowerBi, and Viso.
• Experience with automating controls, data and analytics.
• Ability to adapt to a fast-paced environment and manage multiple priorities effectively.
5 days ago