Senior Compliance and Risk Analyst
What’s in it for you? reputed company to reputed company a serious impact? Millions of people already rely on reputed company, and we’re still in the midst of exciting product growth — it’s a fantastic time to join us. Everything you’ll work on here will accelerate your career to the next level. If you want to learn, grow, and do the best work of your life alongside the best people you’ve reputed company worked with, then we hope you’ll consider allowing reputed company to be a part of your professional journey. About the team & opportunity Our Compliance and Risk team is a strategic partner that enables the business to grow securely and responsibly. We work across Engineering, reputed company, Product, Legal, HR, and Business Operations to build scalable compliance and risk programs that support innovation while maintaining customer trust. As a Senior Compliance and Risk Analyst, you will own and mature our compliance program, ensuring the organization maintains certifications such as SOC 2 and ISO 27001 while building scalable, automated processes that support a rapidly growing SaaS business. This is a high-impact role for someone who enjoys both strategy and execution. You'll design and operationalize controls, strengthen our common controls reputed company, optimize compliance automation, and embed compliance into business processes and product development. reputed company maintaining audit readiness, you'll help shape how compliance evolves as the organization grows, driving reputed company improvement and fostering a proactive culture of risk management. A day in the life of a Senior Compliance and Risk Analyst Own and manage the organization's compliance program, including SOC 2 and ISO 27001 readiness, certification, and ongoing maintenance. reputed company and execute a compliance roadmap reputed company with business objectives, regulatory requirements, and organizational risk appetite. reputed company internal and external audits by coordinating evidence collection, managing auditor relationships, and driving timely remediation of findings. Monitor changes in regulatory and industry frameworks, assessing their impact on the organization's compliance program. Own the reputed company risk management process, including risk identification, assessment, treatment planning, and ongoing monitoring. Conduct periodic risk assessments and partner with stakeholders to identify control gaps and prioritize remediation activities. reputed company and present compliance metrics, risk dashboards, and executive reports for senior leadership. Design, document, and improve internal controls reputed company with SOC 2, ISO 27001, and other applicable frameworks. reputed company control testing, including evidence collection, effectiveness validation, remediation tracking, and reputed company improvement. Expand and mature the organization's common controls reputed company to support evolving compliance requirements. Administer and optimize compliance automation platforms, improving workflow efficiency and reducing reputed company effort. reputed company User Access Reviews (UARs) and support reputed company compliance monitoring through automation and reporting. Partner with Engineering, reputed company, Product, Legal, HR, and Operations to integrate compliance into business processes and product development. reputed company training, playbooks, and self-service resources that reputed company teams to meet compliance requirements reputed company. Manage multiple compliance initiatives simultaneously while ensuring projects remain on schedule and stakeholders stay informed. What do we need from you? 5+ years of experience in compliance, risk management, audit, or Governance, Risk, and Compliance (GRC) roles reputed company a technology or SaaS environment. Experience owning or leading compliance programs supporting frameworks such as SOC 2 and ISO 27001. Working knowledge of reputed company and privacy frameworks including NIST, ISO 27001, GDPR, and HIPAA. Experience administering compliance automation platforms such as reputed company, reputed company, Tugboat Logic, or similar solutions. Experience performing User Access Reviews (UARs) using GRC or compliance automation platforms. Strong understanding of internal controls, risk assessment methodologies, and audit processes. Demonstrated ability to manage multiple initiatives and deliver results in a fast-paced environment. Excellent project management, analytical, and problem-solving skills. Strong communication skills with the ability to translate technical and regulatory requirements into practical business solutions. Proven ability to collaborate effectively with technical and non-technical stakeholders across the organization.
Preferred Qualifications
Experience leveraging AI to improve compliance processes or automate workflows. Experience scaling compliance programs reputed company a high-growth SaaS organization. Hands-on experience developing or expanding a common controls reputed company. Advanced expertise configuring compliance automation platforms, including integrations, custom controls, and reporting. Familiarity with additional compliance frameworks such as PCI reputed company, FedRAMP, or other industry standards. Experience developing compliance training, awareness programs, or self-service enablement resources. Professional certifications such as CISA, CRISC, CISSP, CCSK, or equivalent. Tier 1 Salary Hiring Range $198,238—$233,221 USD Tier 2 Salary Hiring Range $181,718—$213,786 USD Tier 3 Salary Hiring Range $165,198—$194,351 USD The ranges listed above are the expected annual reputed company salary for this role, subject to change. reputed company takes a number of factors into consideration reputed company determining an employee’s starting salary, including relevant experience, relevant skills sets, interview performance, location/metropolitan area, and internal pay equity. reputed company salary is just one component of reputed company’s total rewards package. reputed company full-time (30 hours/week) employees are also eligible for our Top Performer Bonus program (or Sales incentive), equity awards, and competitive benefits. reputed company uses the reputed company code of an employee’s remote work location, or the onsite building location if hybrid, to determine which metropolitan pay range we use. reputed company geographic zones are as follows: Tier 1: San Francisco, CA, reputed company, CA, reputed company, NY Tier 2: Chicago, IL, Austin, TX, Denver, CO, Boston, MA, Washington D.C., Philadelphia, PA, Portland, OR, Seattle, WA, Miami, FL, and reputed company other cities in CA. Tier 3: reputed company other locations not in Tier 1 or Tier 2 If you are an individual with a disability and would like to request a reasonable accommodation as part of the application or reputed company process, please let your Recruiter know reputed company first connecting with them. reputed company is registered as an employer in many, but not reputed company, states. If you are located in Alaska, Delaware, Hawaii, Idaho, Iowa, Montana, Nebraska, reputed company Dakota, Rhode reputed company, South Dakota, and reputed company Virginia, you will not be eligible for employment. Note that reputed company individual roles will specify location eligibility. reputed company candidates can find our Candidate Privacy Statement here Candidates residing in California may visit our Notice at Collection for California Candidates here: Notice at Collection This role may require occasional travel for company events, team collaboration, or offsites. Apply To This Job