×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Risk & Compliance Analyst

Job in Atlanta, Fulton County, Georgia, 30383, USA
Listing for: Bennett Thrasher
Full Time, Seasonal/Temporary position
Listed on 2025-12-02
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below

Overview

Bennett Thrasher, currently ranked among the largest CPA firms in the U.S., is a premier provider of professional tax, assurance, and consulting services to businesses and high net worth individuals. We are seeking a highly skilled and motivated Risk & Compliance Analyst to join our dynamic team. The successful candidate will play a crucial role in ensuring our organization's data policies, procedures, and standards follow regulatory requirements and industry best practices.

Duties include conducting training and assessments on cyber risks, managing risks associated with third-party vendors, ensuring compliance with SOC regulations, and maintaining privacy.

Responsibilities
  • Data Governance:
    Develop, implement, and maintain data governance frameworks, policies, and standards to ensure data quality and integrity.
  • Risk Management:

    Identify, assess, and manage data-related risks to protect the organization’s data assets. Compliance:
    Ensure compliance with data protection regulations such as GDPR, CCPA, and other relevant legislation.
  • Audit and Monitoring:
    Conduct regular audits and monitoring activities to identify control gaps and ensure compliance with data governance policies and standards.
  • Compliance:
    Ensure compliance with data protection regulations such as GDPR, CCPA, and other relevant legislation.
  • Training and Awareness:
    Provide training and raise awareness on data governance, risk management, and compliance within the organization.
  • Stakeholder

    Collaboration:

    Work closely with data owners, IT, legal, and departments to ensure alignment and support for data governance initiatives.
Specific Responsibilities
  • Audits & Client Support:
    Directly oversee annual SOC1/SOC2 reviews, as well as managing compliance with GLBA and GDPR. Coordinate with internal and external auditors during compliance reviews. Complete security questionnaires for prospective and existing clients.
  • Policy, Training, and Awareness:
    Assist in developing and updating privacy and compliance policies, procedures, and training materials. Deliver training and awareness sessions to internal teams.
  • Internal Risk & Compliance:
    Perform internal information risk classification and maintain inventories of sensitive data. Review application requests for data privacy and security risks. Implement processes to automate and continuously monitor information security controls, exceptions, risks, testing. Develop and implement controls and processes through frameworks like NIST, COSO, COBIT, etc. Develop reporting metrics, dashboards, and evidence artifacts.
  • Third-Party

    Risk Management:

    Conduct and manage end-to-end vendor security risk assessments. Review third-party security documentation (e.g., SOC 2 reports, ISO 27001 certifications). Assess new software for security and privacy risks and recommend appropriate contract terms.
Qualifications
  • Bachelor's degree in information technology, Business Administration, or related field.
  • Minimum of 3-5 years of experience in data governance, risk management, and compliance roles.
  • Experience with cybersecurity frameworks such as NIST CSF, ISO 27001, or Secure Controls Framework (SCF).
  • Strong knowledge of data protection regulations (e.g., GDPR, CCPA).
  • Excellent analytical, problem-solving, and communication skills.
  • Ability to work independently and collaboratively with cross-functional teams.
  • Experience with Microsoft Purview or similar data governance tools is a plus.
  • Professional certifications such as SSCP, CISM, CIPP, CIPM, or CRISC are a plus.
Equal Opportunity

Bennett Thrasher is an Equal Opportunity Employer encouraging diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, pregnancy, sexual orientation, gender identity and/or expression, age, disability, genetic information, citizenship status, military service obligations or any other category protected by applicable federal, state, or local law.

Employment details
  • Seniority level:
    Mid-Senior level
  • Employment type:

    Full-time
  • Job function:
    Legal
  • Industries:
    Accounting
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search