Information Assurance and Compliance Analyst

Keeper is hiring a skilled Information Assurance and Compliance Analyst to join our cybersecurity team. This can be a 100% remote position from select locations with an opportunity to work a hybrid schedule for candidates based in the El Dorado Hills, CA or Chicago, IL metro area.

Keeper’s cybersecurity software is trusted by millions of people and thousands of organizations, globally. Keeper is published in 21 languages and is sold in over 120 countries. Join one of the fastest-growing cybersecurity companies and enhance your career while working with a modern tech stack and cutting-edge tools!

About Keeper

Keeper Security is transforming cybersecurity for people and organizations around the world. Keeper’s affordable and easy-to-use solutions are built on a foundation of zero-trust and zero-knowledge security to protect every user on every device. Our award-winning, zero-trust, privileged access management platform deploys in minutes and seamlessly integrates with any tech stack and identity application to provide visibility, security, control, reporting and compliance across an entire enterprise. Trusted by millions of individuals and thousands of organizations, Keeper is an innovator of best-in-class password management, secrets management, privileged access, secure remote access and encrypted messaging. Learn more at .

About the Role

As a Information Assurance and Compliance Analyst, you will play a vital role in developing, implementing, and maintaining cybersecurity policies and frameworks to ensure compliance and the security of IT systems. You will collaborate closely with various teams to enforce best practices, implement regulatory standards, and educate employees on cybersecurity matters. Your expertise will directly support the organization’s commitment to data protection, risk management, and regulatory compliance.

Responsibilities

• Develop and implement comprehensive cybersecurity policies, ensuring alignment with frameworks such as NIST CSF, and government standards like IL5 and FedRAMP HIGH
• Manage and maintain compliance with government security standards and ensure policies address both technical and non-technical security needs
• Define data classification and protection requirements for IT systems to safeguard sensitive information
• Collaborate with cross-functional teams to ensure cybersecurity policies are effectively integrated into business operations
• Educate employees on privacy protections and security restrictions, delivering training and communication to increase awareness
• Regularly review and update cybersecurity policies to maintain compliance with evolving regulations and industry best practices
• Support the Approval to Operate (ATO) process by ensuring all systems meet required security standards
• Troubleshoot security policy implementation issues and provide solutions to enhance protection
• Keep up-to-date with the latest industry trends in cybersecurity policies and regulatory compliance to continuously improve security protocols
• Due to this role's involvement in FedRamp HIGH, qualified candidates must be a U.S. Citizen with the ability to hold a security clearance

• 3+ years of experience in developing, implementing, and managing cybersecurity policies
• Comprehensive understanding of cybersecurity frameworks, with proficiency in NIST Cybersecurity Framework (CSF), practical application of framework principles in enterprise environments, and the ability to translate theoretical framework guidelines into actionable security strategies
• Experience in achieving and maintaining high-level security compliance, including government security standards like DoD Impact Level 5(IL5), FedRAMP HIGH authorization requirements, SOC2, and ISO
• Expertise in developing and implementing data classification policies and defining data protection requirements for IT systems
• Proven capability to prepare and support comprehensive security documentation for compliance audits
• Excellent communication and training skills to effectively educate employees on privacy protections and restrictions
• Ability to review existing policies and drive practical implementation to ensure effective protection
• Familiarity with the Approval to Operate (ATO) process and its role in ensuring the security of IT systems
• Relevant certifications, such as CISSP, CISM, or CIPP/US, are highly desirable

• Medical, Dental & Vision (inclusive of domestic partnerships)
• Employer Paid Life Insurance & Employee/Spouse/Child Supplemental life
• Voluntary Short/Long Term Disability Insurance
• 401K (Roth/Traditional)
• A generous PTO plan that celebrates your commitment and seniority (including paid Bereavement/Jury Duty, etc)
• Above market annual bonuses

Keeper Security, Inc. is an equal opportunity employer and participant in the U.S. Federal E-Verify program. We celebrate diversity and are committed to creating an inclusive environment for all employees.

Classification: Exempt