Senior Security Compliance Analyst

About TaskUs: TaskUs is a provider of outsourced digital services and next-generation customer experience to fast-growing technology companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery, ride-sharing, HiTech, FinTech, and HealthTech. 

The People First culture at TaskUs has enabled the company to expand its workforce to approximately 45,000 employees globally. Presently, we have a presence in twenty-three locations across twelve countries, which include the Philippines, India, and the United States.

It started with one ridiculously good idea to create a different breed of Business Processing Outsourcing (BPO) We at TaskUs understand that achieving growth for our partners requires a culture of constant motion, exploring new technologies, being ready to handle any challenge at a moment's notice, and mastering consistency in an ever-changing world.

What We Offer: At TaskUs, we prioritize our employees' well-being by offering competitive industry salaries and comprehensive benefits packages. Our commitment to a People First culture is reflected in the various departments we have established, including Total Rewards, Wellness, HR, and Diversity. We take pride in our inclusive environment and positive impact on the community. Moreover, we actively encourage internal mobility and professional growth at all stages of an employee's career within TaskUs. Join our team today and experience firsthand our dedication to supporting People First.

Senior Security Compliance Analyst

About TaskUs: TaskUs is a provider of outsourced digital services and next-generation customer experience to fast-growing technology companies, helping its clients represent, protect and grow their brands. Leveraging a cloud-based infrastructure, TaskUs serves clients in the fastest-growing sectors, including social media, e-commerce, gaming, streaming media, food delivery, ride-sharing, HiTech, FinTech, and HealthTech. 

TaskUs People First culture has grown the company to have approximately 45K employees worldwide. We are currently in twenty-three locations across twelve countries, including the Philippines, India, and the United States.

It started with one ridiculously good idea to create a different breed of Business Processing Outsourcing (BPO) We at TaskUs understand that achieving growth for our partners requires a culture of constant motion, exploring new technologies, being ready to handle any challenge at a moment's notice, and mastering consistency in an ever-changing world.

What We Offer: TaskUs provides world-class benefit packages with competitive industry salaries to all its employees. With well-developed departments, such as Total Rewards, Wellness, HR, and Diversity, we continuously thrive in supporting a People First culture. We are known for our inclusiveness and community impact. We also promote internal mobility and professional development at every step of an employee's career within TaskUs. Come be part of TaskUs that supports People First by applying today

What can you expect in a Senior Security Compliance Analyst role with TaskUs: 

Think of yourself as someone who is responsible for security system assessments, monitoring, and reporting. You will have a significant role in performing audits, tracking vulnerability assessments, security testing, and working with operations teams on remediation and mitigation of audit findings.

Imagine yourself going to work with one thing on your mind: that you will lead the assessment and integration of security controls of the entire corporate environment in line with applicable requirements from PCI DSS, SOC 2, HIPAA/HITRUST, and ISO Responsible for policy assessment of endpoint and network security appliances, hardware, and software, enforcing the TaskUs security policies, and complying with requirements of internal and external security audits and recommendations. 

Key Responsibilities:

• Ensuring Alignment of Security Controls to Client requirements

• Good knowledge of Data Governance.

• Support the Security Compliance Manager in handling the assessment and integration of security controls of the entire corporate environment in line with customer requirements.

• Support the management of all enterprise security compliance requirements, including PCI DSS, SOC 2, HIPAA/HITRUST, and ISO 27001.

• Should be able to lead the development and maintenance of IT and Cyber Security Risk Assessment procedures and processes, as well as work with the business units outside of InfoSec to complete the Risk Assessment with the tracking of Risk Treatment.

• Recommends and supports deployment and use of additional security products and tools or for performing the Risk Assessments and the Vendor Security Assessments. 

• Must be able to work with security engineers for the optimal configuration of the network and host-based security platforms - aligned with compliance requirements

• Recommends and supports deployment of additional security products and tools, or enhancements to existing tools, to mitigate security risk and detect/remediate compromises.

• Work with security engineers for the optimal configuration of network and host-based security platforms in line with compliance requirements. 

• Provide Incident Response support as needed in response to information security-related events.  In the event of security incident response, participate in the analysis, troubleshooting, and investigation of security-related information systems anomalies based on security platform reporting, network traffic, log files, host-based, and automated security alerts. 

• Evaluate systems using vulnerability scanners and manual techniques to verify system security settings and configurations. 

• Performs other duties as assigned as part of the security compliance activities and remains a backup for the teammates in any required or given situations.

Required Qualifications: 

• In-depth and hands-on experience of the following compliance requirements: PCI DSS, SOC 2, HIPAA/HITRUST, and ISO 27001.

• At least 4 years of experience in IT/IS Security Compliances/Consulting focuses on IT security, IT audit, Risk Assessments, Vendor Security Assessment, and/or due diligence reviews.

• Candid Industry-recognized presentation skills with the ability to prepare reports and presentations.

• An industry recognized information security certification, such as CISA, ISO LA/LI, CISM, CISSP, ISO 31000, RIsk Professional, and Certified Third-Party Risk Professional.

• Sound technical writing, documentation, and communication skills are required. 

• Functional awareness of both information system platforms with a strong IT technical understanding and aptitude for analytical problem-solving. 

• Strong understanding of Third-party, enterprise, network, system and application-level risk and controls

• Ability to handle sensitive and/or confidential material and information with suitable discretion.

• Excellent interpersonal skills and a professional demeanor.

• BPO contact center experience preferred, but not required.

Education / Certifications:

• Bachelor's degree in MIS/Computer Science or Business and/or a combination of education and relevant experience. 

Work Location / Work Schedule / Travel: 

• TaskUs Ortigas, Quezon City, Las Pinas, and Antipolo

• Work-from-Home (Onsite as needed)

• Day Shift (Philippine Time)

How We Partner To Protect You: TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.

DEI: In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics, and circumstances. Inclusive and equitable practices are our responsibility as a business. TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodations in any part of the hiring process, please let us know.

We invite you to explore all TaskUs career opportunities and apply through the provided URL

How We Partner To Protect You: TaskUs will neither solicit money from you during your application process nor require any form of payment in order to proceed with your application. Kindly ensure that you are always in communication with only authorized recruiters of TaskUs.

DEI: In TaskUs we believe that innovation and higher performance are brought by people from all walks of life. We welcome applicants of different backgrounds, demographics, and circumstances. Inclusive and equitable practices are our responsibility as a business. TaskUs is committed to providing equal access to opportunities. If you need reasonable accommodations in any part of the hiring process, please let us know.

We invite you to explore all TaskUs career opportunities and apply through the provided URL