Senior Security Analyst With Full Professional Level Of English

Our client is seeking a detail-oriented and driven Security Analyst to join their IT team. In this role, the analyst will play a key part in strengthening customer trust by responding to security questionnaires, supporting external audits, and helping maintain compliance with leading industry standards such as SOC 2 and ISO 27001.

This position offers the opportunity to collaborate across multiple departments—including engineering, legal, sales, and executive leadership—to ensure that the organization's security posture is not only well communicated but also continuously improved. It's an exciting chance to contribute to a company where security is a core pillar of customer confidence and business success.

Tasks

• Respond promptly and accurately to customer and vendor security questionnaires, due diligence requests, and RFPs, ensuring timely support throughout the sales and procurement processes.
• Maintain and continuously update reusable documentation—including CAIQ, SIG, security whitepapers, and policy summaries—to improve efficiency in future responses.
• Oversee the management of Sprinto, the organization's compliance automation platform, ensuring its data remains current and aligned with compliance objectives.
• Support the planning, execution, and documentation of evidence for third-party audits, including but not limited to SOC 2 and ISO 27001 assessments.
• Track remediation actions identified through audits or internal assessments, and assist in coordinating their timely resolution.
• Work closely with cross-functional teams to document and maintain up-to-date security controls, internal policies, and operational procedures.
• Stay informed on evolving regulatory requirements, compliance obligations, and security best practices to help enhance the organization's security posture.
• Maintain a well-organized inventory of compliance artifacts, certifications, and attestations for internal and external reference.
• Participate in internal risk assessments and conduct vendor security evaluations to uphold the organization's third-party risk management standards.
• Contribute to company-wide security awareness efforts and training programs, fostering a culture of security across all departments.

Requirements

• 5+ years of experience in information security, security compliance, GRC, or related fields.
• Familiarity with security frameworks and standards such as SOC 2, ISO 27001, NIST, or CIS.
• Strong written communication skills with the ability to clearly explain technical concepts to non-technical stakeholders.
• Experience completing security questionnaires or responding to customer compliance inquiries.
• Detail-oriented and organised, with the ability to manage multiple requests and deadlines.
• Proactive, collaborative, and comfortable working across departments.
• Bonus : experience with tools like Sprinto or similar GRC platforms.

Permanent contract

Full remote working model

Flexible hours

Great team of people

Interview Process

• Step 1 : Interview with one of our recruiters to get to know you better.
• Step 2 : Interview with the Hiring Manager.
• Step 3 : Technical Test.
• Step 4 : Technical Interview.

Babel Profiles is a boutique Recruitment Agency based in the heart of Barcelona and we work with amazing brands and support them in finding the perfect candidates / employees. We are very people-oriented and have a close and informal style. We like to spend time getting to know our candidates and recognizing their skills and competencies in order to help them find the perfect job.

J-18808-Ljbffr