Information Security Compliance Analyst

Description We're looking for an Information Security Compliance Analyst to join our Information Security GRC team. This role supports compliance programs across a global organization, spanning multiple regulatory frameworks, security certifications, and risk management initiatives. You'll also contribute to broader GRC efforts, including third-party risk management, risk profile reporting, policy governance, and security compliance. Reporting to the Senior Information Security Compliance Lead, you'll work across IT, Finance, Legal, and Quality teams to ensure controls are operating effectively, audit evidence is delivered on time, and compliance obligations are met. This is a great fit for someone who thrives in a multi-framework environment and wants to grow across the full GRC spectrum. Responsibilities * Support the execution and maintenance of compliance programs across multiple frameworks, including SOX, ISO 27001, SOC 2, CMMC, NIST 800-171, Cyber Essentials, EU Regulations, and other compliance requirements. * Coordinate evidence collection, control testing, and audit deliverables for both internal and external audits, ensuring timely, accurate, and audit-defensible responses. * Work with control owners across IT, Finance, and business teams to ensure controls are performed on schedule and documentation meets quality standards. * Contribute to the organization's risk profile, helping track, report, and improve security and compliance metrics. * Support third-party risk management activities, including vendor security assessments and risk acceptance workflows. * Assist in maintaining and operating the organization's GRC platform for controls management, risk assessments, and policy exceptions. * Conduct periodic reviews of compliance controls, processes, and procedures to identify gaps and drive continuous improvement. * Provide guidance and support to control owners on evidence requirements, control design, and audit readiness. * Collaborate with cross-functional teams to ensure compliance programs are integrated and aligned with business objectives. * Stay current on regulatory changes, industry standards, and evolving compliance requirements to keep programs effective. Qualifications Required * 2+ years of experience in a compliance, GRC, or IT audit role. * Working knowledge of SOX ITGC/ITAC controls and the audit lifecycle. * Familiarity with at least two of the following: ISO 27001, SOC 2, NIST 800-171, CMMC, Cyber Essentials. * Strong organizational skills, ability to manage multiple audit timelines, deliverables, and stakeholders simultaneously. * Clear written and verbal communication skills; able to translate compliance requirements for technical and non-technical audiences. * Self-starter with a continuous improvement mindset. Preferred * Experience with GRC platforms (e.g., LogicGate, ServiceNow GRC, AuditBoard, or similar). * Exposure to cloud security compliance (AWS, Azure) or vulnerability management programs. * Experience supporting external audits. * Familiarity with third-party risk management processes. * Relevant certifications (CISA, CRISC, ISO 27001 Lead Auditor, Security+, or similar) are a plus but not required. Fortive Corporation Overview Fortive's essential technology makes the world safer and more productive. We accelerate transformation in high-impact fields like workplace safety, build environments, and healthcare. We are a global industrial technology innovator with a startup spirit. Our forward-looking companies lead the way in healthcare sterilization, industrial safety, predictive maintenance, and other mission-critical solutions. We're a force for progress, working alongside our customers and partners to solve challenges on a global scale, from workplace safety in the most demanding conditions to advanced technologies that help providers focus on exceptional patient care. We are a diverse team 10,000 strong, united by a dynamic, inclusive culture and energized by limitless learning and growth. We use the proven Fortive Business System (FBS) to accelerate our positive impact. At Fortive, we believe in you. We believe in your potential—your ability to learn, grow, and make a difference. At Fortive, we believe in us. We believe in the power of people working together to solve problems no one could solve alone. At Fortive, we believe in growth. We're honest about what's working and what isn't, and we never stop improving and innovating. Fortive: For you, for us, for growth. About Fluke Fluke is leading the world in creating software, test tools and technology that will support customers today and in the future. We are a customer-obsessed market leader with a strong reputation for reliability, quality and safety.A wholly owned subsidiary of Fortive Corporation (www.fortive.com), Fluke is a global corporation headquartered in the greater Seattle area. Driven by the successful Fortive Business System, Fluke offers the passion of a startup with the resources of a Fortune 500 company. We are focused on the growth of our individual employees, teams and the Fluke brand. We Are an Equal Opportunity Employer. Fortive Corporation and all Fortive Companies are proud to be equal opportunity employers. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, national origin, religion, sex, age, marital status, disability, veteran status, sexual orientation, gender identity or expression, or other characteristics protected by law. Fortive and all Fortive Companies are also committed to providing reasonable accommodations for applicants with disabilities. Individuals who need a reasonable accommodation because of a disability for any part of the employment application process, please contact us at applyassistance@fortive.com.