Job Description

Sr. Compliance & Risk Analyst

Location: Hybrid – Onsite Tues–Thurs | Remote Mon & Fri

Type: Full-Time | Direct Hire

Company Overview

Our client is a fast-growing, infrastructure-focused technology company delivering mission-critical services across the Southeast. They provide a blend of network, cloud, and data management solutions supporting enterprise, hyperscale, and edge use cases.

With a strong commitment to innovation and operational excellence, this organization maintains a collaborative environment where compliance, security, and risk mitigation play a key role in supporting customer trust and business scalability.

Role Summary

The Sr. Compliance & Risk Analyst will support the company’s enterprise-wide compliance, audit, and risk management programs. This role reports to the Director of Security & Compliance and will be involved in day-to-day execution of policy governance, third-party risk, audit readiness, and framework alignment across multiple regulatory domains.

Ideal candidates are detail-oriented, proactive professionals who have successfully contributed to programs supporting frameworks such as SOC 2, ISO 27001, HIPAA, and PCI-DSS within a cloud, infrastructure, or technology-driven organization.

Key Responsibilities

Compliance Operations

• Assist in the implementation and management of compliance programs (SOC 2, PCI-DSS, ISO 27001, HIPAA, NIST).
• Track and report on control effectiveness and program maturity.
• Support policy development and regular policy reviews aligned with changing regulations and internal priorities.

Risk & Assessment

• Conduct internal risk assessments and third-party/vendor evaluations.
• Document findings and support development of risk mitigation strategies.
• Collaborate with cross-functional teams (IT, Security, Legal, Sales) to align risk posture with business goals.
• Support sales enablement by completing compliance questionnaires and responding to client RFPs/security inquiries.

Audit & Documentation

• Manage internal/external audit requests and organize required evidence.
• Maintain audit-ready documentation for certification frameworks.
• Conduct internal control reviews to assess the effectiveness and readiness of internal controls.

Governance & Awareness

• Assist with updates to internal security policies and procedures.
• Promote internal compliance awareness through training and engagement.
• Ensure accurate documentation is readily accessible and communicated across teams.

Qualifications

• 5+ years of experience in risk, compliance, or audit roles—ideally within a technology, SaaS, or infrastructure organization.
• Experience supporting regulatory frameworks such as SOC 2, ISO 27001, PCI-DSS, HIPAA, or NIST .
• Familiarity with GRC platforms and audit management tools.
• Strong writing and communication skills for policy creation and stakeholder reporting.
• A bachelor's degree is preferred; certifications such as CISA, CRISC, or similar are a plus.
• Ability to multitask across projects and maintain meticulous documentation.
• Experience with internal or external pen testing.

This is a high-impact role supporting a growing compliance function in a collaborative, engineering-driven culture. The company offers a modern hybrid work schedule and the opportunity to help shape long-term governance and security practices.

Job Tags

Similar Jobs