Skip to content
CalendlyCalendlyUnited States

Senior Compliance and Risk Analyst

Senior Compliance and Risk Analyst responsible for owning and maturing SOC 2, ISO 27001 and enterprise risk programs at a high-growth SaaS company. Leads audits, automates controls using platforms like Drata/Vanta, performs risk assessments, and embeds compliance into engineering and business processes.

165k – 233k/yr
Remote5+ YOEOther

About the role

Responsibilities

  • Own and manage the organization's compliance program, including SOC 2 and ISO 27001 readiness, certification, and ongoing maintenance.
  • Develop and execute a compliance roadmap aligned with business objectives, regulatory requirements, and organizational risk appetite.
  • Lead internal and external audits by coordinating evidence collection, managing auditor relationships, and driving timely remediation of findings.
  • Monitor changes in regulatory and industry frameworks, assessing their impact on the organization's compliance program.
  • Own the enterprise risk management process, including risk identification, assessment, treatment planning, and ongoing monitoring.
  • Conduct periodic risk assessments and partner with stakeholders to identify control gaps and prioritize remediation activities.
  • Develop and present compliance metrics, risk dashboards, and executive reports for senior leadership.
  • Design, document, and improve internal controls aligned with SOC 2, ISO 27001, and other applicable frameworks.
  • Lead control testing, including evidence collection, effectiveness validation, remediation tracking, and continuous improvement.
  • Expand and mature the organization's common controls framework to support evolving compliance requirements.
  • Administer and optimize compliance automation platforms, improving workflow efficiency and reducing manual effort.
  • Perform User Access Reviews (UARs) and support continuous compliance monitoring through automation and reporting.
  • Partner with Engineering, Security, Product, Legal, HR, and Operations to integrate compliance into business processes and product development.
  • Develop training, playbooks, and self-service resources that empower teams to meet compliance requirements efficiently.
  • Manage multiple compliance initiatives simultaneously while ensuring projects remain on schedule and stakeholders stay informed.

Requirements

  • 5+ years of experience in compliance, risk management, audit, or Governance, Risk, and Compliance (GRC) roles within a technology or SaaS environment.
  • Experience owning or leading compliance programs supporting frameworks such as SOC 2 and ISO 27001.
  • Working knowledge of security and privacy frameworks including NIST, ISO 27001, GDPR, and HIPAA.
  • Experience administering compliance automation platforms such as Drata, Vanta, Tugboat Logic, or similar solutions.
  • Experience performing User Access Reviews (UARs) using GRC or compliance automation platforms.
  • Strong understanding of internal controls, risk assessment methodologies, and audit processes.
  • Demonstrated ability to manage multiple initiatives and deliver results in a fast-paced environment.
  • Excellent project management, analytical, and problem-solving skills.
  • Strong communication skills with the ability to translate technical and regulatory requirements into practical business solutions.
  • Proven ability to collaborate effectively with technical and non-technical stakeholders across the organization.

Nice-to-Haves

  • Experience leveraging AI to improve compliance processes or automate workflows.
  • Experience scaling compliance programs within a high-growth SaaS organization.
  • Hands-on experience developing or expanding a common controls framework.
  • Advanced expertise configuring compliance automation platforms, including integrations, custom controls, and reporting.
  • Familiarity with additional compliance frameworks such as PCI DSS, FedRAMP, or other industry standards.
  • Experience developing compliance training, awareness programs, or self-service enablement resources.
  • Professional certifications such as CISA, CRISC, CISSP, CCSK, or equivalent.

Skills

SOC 2ISO 27001NistGDPRHIPAAGRCDrataVantaRisk AssessmentInternal ControlsAudit ManagementCompliance Automation

Similar roles

Coinbase

Strategic Intelligence Manager, Protective Intelligence

CoinbaseUnited States

Lead Coinbase's Strategic Intelligence program as the DRI for reputational due diligence, geopolitical risk analysis, and M&A intelligence. Set program strategy, deliver forward-looking assessments to senior leadership, and design AI-enabled processes while mentoring analysts.

166k – 196k/yr
Remote6+ YOEOther
Airbnb

Senior Manager, Public Policy, Texas

AirbnbTexas

Leads public policy campaigns and government relations strategies in Texas, influencing local and state regulations for Airbnb's host community. Requires 10+ years in legislative lobbying and policy advocacy, with strong project management and stakeholder engagement skills.

164k – 205k/yr
On-site10+ YOEOther
Luma AI

Senior Video Editor

Luma AILos Angeles, CA +2

Senior Video Editor crafting cinematic launch assets and brand campaigns for multimodal AI products. Owns end-to-end editing, sound design, and motion graphics in a high-velocity environment.

167k – 200k/yr
Hybrid3+ YOEOther
Zoox

Operations Lead - Perception Data Labeling

ZooxBoston, MA

Leads operations for perception data labeling, managing data collection, vendor allocation, budgeting, and quality tracking for AI perception models in autonomous vehicles. Requires 5+ years in technical program management or operations in AI/ML or autonomous driving, with sensor domain knowledge and data literacy using SQL/Python.

163k – 223k/yr
Hybrid5+ YOEOther
Zoox

Senior Project Manager, Places & Build

ZooxFoster City, CA

Oversees full lifecycle of design and construction for real estate capital projects ranging from offices to manufacturing facilities ($50K-$30M+). Requires 10+ years experience, bachelor's in related field, expertise in financial/schedule management, procurement, and tools like Excel, Bluebeam, MS Project.

163k – 196k/yr
On-site10+ YOEOther