The Agiloft Contract Lifecycle Management platform has won dozens of awards, including the Editor's Choice award from PC Mag, for the past five years in a row.
Agiloft has a highly differentiated value proposition which is uniquely appealing to enterprises: pre-built applications with a deeply configurable, no-code platform for integrated Business Process Management throughout an organization.
Agiloft is pioneering the applied use of Artificial Intelligence to enable next-generation business commerce at organizations ranging from small enterprises to U.S. government agencies and Fortune 100 companies.
Additionally, 99% of employees who commented
on Glassdoor would recommend Agiloft to a friend.
Position Overview
We are seeking a self-motivated and highly organized Security Compliance Specialist to join our Information Security team. The ideal candidate will have great attention to detail and strong communication skills. This is a highly visible, customer-facing role responsible for supporting sales, RFx, and customer success teams.
Job ResponsibilitiesSecurity Response Management:Maintain the security response library for RFPs using Responsive (formerly RFPIO).Act as the primary interface for the InfoSec team in completing client security and Third Party Risk Management (TPRM) related Due Diligence Questionnaires with tailored, concise, and high-quality responses.Manage our trust portal and ensure that the content is up-to-date and accurate.Client and Prospect Interaction:Attend meetings with prospects and customers as the subject matter expert (SME) for security and compliance frameworks.Act as a security liaison to support pre-sales efforts in collaboration with the Sales Team and Account Executives.Support post-sales and implementation efforts by providing security information to the Customer Success Team.Vendor Risk Management:Run Agiloft’s vendor risk management program, including reviewing and approving new vendors, conducting annual reviews of existing vendors, and managing the vendor list in Hyperproof.Risk Assessment Process:Manage the risk assessment process, including maintaining a risk register and scheduling and facilitating risk meetings.Document risk exceptions, risk acceptances or informational updates as required, track for appropriate remediation plans disclosure and provide clear and concise risk assessment resultsOther duties as assignedRequired QualificationsFamiliarity with ISO 27001, SOC 2 Type 2, ISO 27701, NIST, GDPR, CCPA/CPRA, and other cybersecurity and privacy frameworks and regulations.Experience participating in security certification audits.Experience presenting on cybersecurity, particularly in customer-facing roles.Knowledge of cybersecurity best practices and organizational approaches to compliance.Excellent computer, communication, and documentation skills, including editing and proofreading.Minimum of 3 years of experience in IT, GRC, or InfoSec.Ability to handle moderate to deep technical security questions related to Agiloft’s SaaS products, overall security posture, and processes.Experience communicating with technical and non-technical stakeholders to achieve meaningful security outcomes.Meticulous attention to detail.Preferred QualificationsExperience with Hyperproof or other GRC applications.Experience with Responsive or other RFx applications.Ensuring a diverse and inclusive workplace is our priority. We are committed to an environment of acceptance where you are free to bring your full self to work. All employment decisions at Agiloft are based on business needs, job requirements, and individual qualifications without regard to race, color, religion or belief, national or social ethnic origin, sex, age, sexual orientation, gender identity and/or expression, parental status, marital status, Veteran status, or any other status protected by the laws or regulations in the locations where we operate. If you have a need that requires accommodation during the recruiting process, please let us know by contacting Director, Talent Acquisition, Brad Toothman at brad.toothman@agiloft.com.
Applicants from underrepresented groups such as minorities, veterans, or individuals with disabilities encouraged to apply.
Applications will be reviewed as submitted. There will be no application deadline for this opportunity.
