Security & Compliance Analyst | Philippines

Peak Support, an outsourcing firm serving some of today’s most innovative companies, is seeking a Security & Compliance Analyst to join our team in the Philippines.

Peak Support manages customer service and back-office teams for high-growth companies. Founded in 2015, we are a 4x Inc. 5000 company and a Certified Great Place to Work, with 2,000 team members in the Philippines, Colombia, Eastern Europe, and the U.S.

Why Peak Support?

If you want to work for high-growth companies, Peak Support is the place to be. Our clients range from early-stage startups with fewer than five employees to unicorns with valuations well over $1 billion to old-line companies re-imagining themselves. We have been profitable from day one and we are proud that in our first five years, we grew entirely through client referrals.

We are dedicated to providing exceptional service to our clients AND an exceptional work environment for our team members. We don’t do this with ping pong tables or video games. We do it by creating a positive, encouraging and performance-driven culture that enables our team members to build rewarding, long-term careers.

Peak Support is actively working to create a diverse, equitable and inclusive company. Applicants will be considered without regard to race, color, religion, gender, gender identity or expression, disability, sexual orientation, national origin, age, or veteran status.

Work from Home PLUS

Peak Support offers all the convenience of working from home, with the benefits of working for an established organization with an exceptional team and tremendous opportunities for growth.

Peak Support has been 100% remote since day one, so we have built a culture and a set of processes that support the success of our remote team members. When we can, we get together in person. We believe that building offline relationships is critical to successful online work.

The successful candidate will be responsible for understanding the organization's security, data privacy, and compliance policies, practices, and controls to effectively answer and respond to client information security questionnaires, data privacy agreements, and other related inquiries around security and data privacy inquiries. This position will require a strong attention to detail, the ability to understand technical concepts, and exceptional communication skills.
 

The ideal candidate will have hands on experience completing information security questionnaires, assessments, data privacy agreements, audit inquiries and other security and compliance related requests and other security related activities in a clear and complete nature based on a strong understanding of the organizations stated policy, controls and processes.

What you'll do:

• Understand and maintain a comprehensive understanding of the organization's security, data privacy, and compliance policies, practices, and controls.
• Collaborate with cross-functional teams to provide guidance and support around security and data privacy inquiries.
• Effectively answer and respond to customer information security questionnaires, data privacy agreements, and other related inquiries.
• Work with customers to address any security and data privacy concerns or questions they may have.
• Participate in the assessment of compliance with security regulations such as PCI-DSS, HIPAA, ISO27001/2, SOC2
• Managing compliance activities for clients, and internal audit reviews.
• Examining and evaluating internal controls based on various security and privacy standards (PCI, SOC2, NIST etc..)
• Organizing data within the organization and improving current data mapping efforts.
• Protecting internal and external client customer data.
• Stay up-to-date with industry regulations and standards related to security and data privacy. 

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Minimum of 2 years of experience in security, data privacy, or compliance roles.
• Strong knowledge and understanding of security protocols, data privacy principles, and best practices.
• Familiarity with key industry regulations and standards (e.g., PCI-DSS, SOC2, ISO27001/2, GDPR, CCPA, HIPAA).
• Exceptional written and verbal communication skills, with the ability to clearly convey complex security and privacy concepts.
• Ability to work autonomously while collaborating effectively as part of a team.
• Highly detail-oriented, organized, and efficient with a keen eye for accuracy.
• Ability to thrive in a fast-paced environment, adapting to changing priorities and deadlines.
• Experience interfacing with clients and addressing security and data privacy-related inquiries is a plus.
• Previous experience in a BPO environment is a strong advantage.