IT Security Compliance Analyst

Basic Information







Date Published


Job ID


Travel Amount


Description and Requirements

From core to cloud to edge, BMC delivers the software and services that enable over 10,000 global customers, including 84% of the Forbes Global 100, to thrive in their ongoing evolution to an Autonomous Digital Enterprise.
BMC Software is looking for a motivated and skilled individual to join the corporate IS&T SaaS Security team.  The IT Security Compliance professional will be responsible for ensuring that the security capabilities and posture of the cloud services provided by the SaaS Security team is in compliance with the policies and standards mentioned as part of the Information Security Management System, along with review of vendor exhibits and provide responses to customer assessments.  A wide breadth of security, compliance and audit skills will be required to perform the assigned tasks.    
Compliance Requirements
Provide assistance/ownership to 3rd-party certifications, internal audits, and customers assessments for BMC's cloud subscription services
Coordinate compliance requirements and validate artifacts for NIST, SOC 2, ISO, and others as needed
Provide assistance as applicable in 3rd-party certifications, internal audits, and customer assessments for BMC cloud subscription services
Provide assistance to other cyber security teams, as required
Maintain upkeep of the risk register and SaaS document libraries
Collaborate with project management office for certification milestones and subject matter experts for artifacts
Contract Reviews
Review of vendor exhibits and provide responses to customer assessments
Provide guidance to other assurance and governance teams
Work closely with IaaS/cloud partners to ensure they meet compliance and regulatory requirements
Tools and Technologies
Understand the purpose of security tools used within BMC, and how they help meet compliance requirements
Bachelor's degree in computer science, information technology, systems engineering, or related field
Understanding of IT security (and related) compliance frameworks like NIST, ISO, SOC 2, HIPAA
Exposure to government compliance requirements a plus
Security and privacy assessment experience in a SaaS organization/product a plus
Good oral and written communication skills to collaborate with the team
Willing to learn new tools and technologies
Broad understanding of security and privacy concepts
Business communication and writing skills
Technical documentation / report writing skills and experience
Understanding and awareness of current developments in the prevailing global Cybersecurity environment
Person that can take initiative to solve complex problems
Ability to work independently
Willingness to broaden scope of knowledge and skills in the field of cyber security 
It is the policy of BMC Software to afford equal opportunity for employment to all individuals regardless of race, color, creed, sex, age, sexual orientation, national origin, disability, ancestry, citizenship status, political affiliation, religion, gender, transgender, gender identity, gender expression, marital status, status as a parent, disabled veteran or status as a protected veteran, genetic information or other factors prohibited by law, and to prohibit harassment or retaliation based on any of these factors.

If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page.

Country (Req)