Security & Privacy Compliance Analyst (Technical)

Founded over 25 years ago, Forte Group has transformed from a Quality Assurance-focused company into a dynamic player in the tech industry, delivering innovative solutions globally. Based in Boca Raton, USA, we proudly partner with over 400 clients, including Fortune 500 companies, and our software impacts more than 9 million users—comparable to the entire population of New York or Switzerland!

We’re more than just a company — we’re a team of passionate, driven people who love what we do. If you’re looking for a place where your work matters, your ideas are valued, and your growth is supported, you’ve found it!

Check out the vacancy below and send us your CV. We can’t wait to meet you!

We are looking for Security & Privacy Compliance Analyst (Technical) whose mission is to own and execute the technical implementation of the organization’s security/privacy compliance program, acting as the CISO’s operational delegate to ensure uninterrupted risk management and audit readiness.

Core Responsibilities:

• Able to lead ISO 27001, GDPR, and SOC 2 compliance workflows: implement and operationalize documented policies, collect evidence and manage audit timelines
• Coordinate penetration tests, including scope definition, vendor management, and remediation tracking
• Perform DPIAs for new systems/processes and manage DSARs
• Act as liaison between Legal and Engineering teams for privacy-by-design implementation
• Conduct security assessments for new vendors (questionnaires, contract reviews)
• Monitor ongoing vendor compliance
• Coordinate annual BCP/DRP tests, including tabletop exercises
• Update plans post-test and track gap remediation
• Perform infrastructure/application risk assessments
• Document risks in register with mitigation timelines
• Manage corrective action plans (CAPs) for audit findings

Required Skills & Experience

Technical Competencies:

• Hands-on experience with:
• Infrastructure: Firewalls, SIEM, EDR
• Applications: Secure SDLC, SAST/DAST tools
• Project Management: JIRA/Confluence, Agile/Waterfall methodologies

Frameworks and Regulations:

• ISO 27001, SOC 2, HIPAA, GDPR

Behavioral Traits:

• Self-directed: Prioritizes tasks with minimal oversight
• Detail-obsessed: Flags inconsistencies in compliance evidence
• Collaborative: Bridges gaps between Security, IT, Legal, and Engineering
• Communication: at least Upper-Intermediate level of English language and higher

We offer:

• Experience working with diverse teams and gaining international expertise
• A friendly, supportive team and an enjoyable work environment where your ideas matter
• A chance to work on exciting, challenging projects using cutting-edge technologies that make a real impact
• Comprehensive health insurance, corporate psychologist access, and partial sports activity coverage
• Free training programs, reimbursement for certifications, and access to online learning platforms to fuel your growth
• Free group English classes and discounted individual lessons
• Paid vacation, public holidays, and sick leave are fully covered by Forte Group
• Referral bonuses, regular performance reviews, and full support for business trips
• Corporate events and holiday presents

Join a team that invests in your well-being, growth, and success!