×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information Security and Compliance Analyst

Job in Pleasant Grove, Utah County, Utah, 84062, USA
Listing for: Veracity Insurance Solutions, LLC
Full Time position
Listed on 2026-02-16
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below

Overview

At Veracity, we aim to be a different kind of insurance partner – one that is free from outside investors, venture capital, or the pressures of a corporate parent. Ours is a culture of empowerment – one that believes in effort, results, and accountability. We believe that transparency fosters trust, trust fosters growth, and that growth drives innovation. Our commitment to rigorous evaluation and relentless execution lead to rapid evolution.

We answer only to the small business owners we serve, and this independence allows us to stay focused on what matters most: helping their businesses thrive by providing expert guidance and best-in-class insurance policies. We’re growing fast and want you to be a part of it!

Role

We’re seeking a highly capable and detail-oriented Information Security and Compliance Analyst to join our team. Reporting to the Technical Operations and Information Security Manager, this remote role plays a critical part in maintaining a strong security and compliance posture by owning day-to-day SOC 2 readiness, supporting audits, and ensuring security policies, controls, and documentation are accurate, current, and audit-ready.

The Information Security and Compliance Analyst will work cross-functionally to maintain compliance with SOC 2, PCI DSS, and related frameworks, proactively identify control gaps, and help ensure the organization remains secure, compliant, and prepared for audits with minimal oversight.

Responsibilities
  • Own day-to-day execution of the SOC 2 compliance program, including maintaining audit readiness, managing evidence, and supporting successful audit outcomes with minimal supervision
  • Implement, maintain, and continuously improve security policies, standards, and controls aligned with SOC 2 Trust Services Criteria and other applicable framework
  • Maintain complete, accurate, and audit-ready documentation, including policies, procedures, control narratives, risk assessments, and evidence repositories
  • Coordinate and manage audit activities for SOC 2, PCI DSS, and related assessments, including auditor requests, walkthroughs, and follow-up
  • Monitor security tooling and system activity to identify, investigate, document, and escalate potential security events or control gaps
  • Lead vulnerability management efforts, including executing scans, tracking remediation, validating fixes, and documenting outcomes for audit purpose
  • Support incident response activities by coordinating triage, documenting incidents, and ensuring post-incident actions and evidence are properly captured
  • Perform and document user access reviews, control testing, and risk assessments to support ongoing compliance and control effectiveness
  • Partner with IT, Engineering, and Compliance teams to remediate findings, strengthen controls, and ensure secure system configuration
  • Track and report on security and compliance metrics, risks, and remediation status to support leadership visibility and decision-making
  • Identify opportunities to strengthen controls, reduce audit friction, and improve the efficiency and maturity of the overall security and compliance program
  • Required to perform other duties as requested, directed, or assigned
Requirements and Qualifications
  • Bachelor’s degree in Information Systems, Information Technology, Cybersecurity, or a related field
  • 2–3 years of hands-on experience in security compliance, governance, risk, or audit-focused roles, with direct SOC 2 audit experience required
  • Demonstrated ability to manage audits, evidence collection, and control documentation independently with minimal oversight
  • Strong understanding of SOC 2 Trust Services Criteria, audit workflows, and common control requirements
  • High integrity, strong attention to detail, and accountability when handling sensitive, regulated, or confidential information
  • Proactive, analytical problem-solving skills with the ability to identify control gaps and drive remediation
  • Strong written and verbal communication skills, including the ability to work directly with auditors and technical stakeholders
  • Proven ability to collaborate effectively with IT, Engineering, and Compliance teams on remediation and security initiatives
  • Ability to…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search