Senior Security Analyst, M&A

It's fun to work in a company where people truly BELIEVE in what they're doing!

Fullsteam is a leading provider of vertical software and embedded payments technology dedicated to helping businesses flourish by providing their customers with seamless experiences. With a dynamic and growing team of 1,700 employees, we are committed to driving innovation and delivering best-in-class software and payment solutions that empower small and medium-sized businesses across numerous industries. Our purpose is to help our customers grow their businesses and delight their customers. Join us and be a part of a forward-thinking company that values growth, excellence, and the success of our clients.

We are seeking a highly skilled and motivated Senior Security Analyst, M&A to join our dynamic team. The ideal candidate will play a crucial role in ensuring the organization's security controls align with best practices. This role requires a comprehensive understanding of security governance, risk management, and compliance frameworks as well as a general understanding of other security areas.  The Senior Security Analyst - M&A is a key role in Fullsteam’s rapidly growing security team, focused on security transformation across our business units.

Primary Responsibilities:

• M&A

  • Lead the security diligence and integration of new acquisitions at Fullsteam.

• Risk Management

  • Conduct risk assessments to identify and evaluate potential threats and vulnerabilities.

  • Work closely with business units to assess the impact of identified risks on organizational objectives.

• Compliance

  • Stay abreast of relevant laws, regulations, and industry standards related to information security (including PCI DSS and HIPAA).

  • Conduct compliance assessments and ensure adherence to applicable security requirements.

• Vendor Management:

  • Evaluate and assess security controls of third-party vendors to ensure compliance with security standards.

  • Collaborate with vendors to address security concerns and mitigate risks.

• Training and Awareness:

  • Deliver security awareness programs to educate employees on security best practices.

  • Provide training to staff regarding compliance requirements and security protocols.

• Security Policy and Procedure Development

  • Draft, review, and update information security policies and procedures.

  • Communicate policies and procedures to relevant stakeholders and ensure awareness and compliance.

Primary Qualifications:

• 5+ years of experience in information security, risk management, and/or compliance roles.

• Demonstrated experience performing technical and procedural risk assessments, creating risk registers, measuring security control health, and/or reporting risks to internal stakeholders.

• Hands-on experience with security tooling (such as external vulnerability scanners, cloud security tools, etc.) is preferred.

• Professional certifications such as CISSP or CRISC are preferred.

• In-depth knowledge of security frameworks, standards, and regulations such as NIST and CIS.

• Strong analytical and problem-solving skills.

• Excellent communication and interpersonal skills.

Fullsteam supports an inclusive workplace that values diversity of thought, experience, and background. Fullsteam is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state, or local law.