Security Legal & Compliance Analyst (6100)
About The Position
itD is seeking a Security Legal & Compliance Analyst to analyze and align security-related legal commitments with actual product security practices, ensuring accuracy, transparency, and defensibility across contractual and public-facing documentation. This role will drive cross-functional collaboration between legal, security, and product teams to identify gaps, modernize security language, and strengthen governance around product security commitments. The ideal candidate will bring deep experience in legal and audit analysis within technology environments and a track record of translating complex security controls into clear, defensible contract language.
Requirements
- Proven legal and audit expertise, preferably within technology or cybersecurity environments.
- Foundational knowledge of information security principles, controls, and best practices.
- Experience analyzing complex legal agreements and translating security requirements into defensible contract language.
- Experience drafting or negotiating technology product security terms.
- Strong project management and stakeholder communication skills.
Nice To Haves
- Professional certifications such as CISA, CISSP, Security+, or other security or auditing certifications.
- Experience working with product security governance or compliance initiatives.
- Background supporting technology contract negotiations related to security commitments.
Responsibilities
- Analyze existing security-related contract language, legal exhibits, and public-facing documentation to ensure alignment with current product security practices.
- Conduct structured interviews with legal, security, and product stakeholders to document current security controls and operational commitments.
- Develop and maintain a comprehensive comparison matrix mapping product security posture against contractual obligations and published security statements.
- Draft proposed updates to technology product security terms, standard contract language, and negotiation fallback positions.
- Review and recommend updates to public-facing security documentation to ensure accuracy and consistency with internal security practices.
- Create and manage a structured project plan including progress tracking, stakeholder updates, and executive reporting.
- Produce final deliverables including documented findings, recommended contract language updates, and an executive summary of security alignment improvements.
- Attend regular internal practice community meetings.
- Collaborate with your itD practice team on industry thought leadership.
- Complete client case studies and learning material (blogs, media material).
- Build out material to contribute to the Digital Transformation practice.
- Attend internal itD networking events (in person and virtual).
- Work with leadership on career fast-track opportunities.
Benefits
- comprehensive medical benefits
- a 401k plan
- paid holidays
- medical, dental, vision, life insurance
- 401K + matching
- networking & career learning and development programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Career Level
Mid Level
