This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Security Compliance Analyst in the United States.
This role sits at the intersection of cybersecurity, risk management, and regulatory compliance, supporting the continuous strengthening of a fast-scaling security compliance program. You will help ensure that internal systems, processes, and controls align with global security and privacy frameworks while maintaining readiness for external audits and certifications. The position involves close collaboration with internal security, engineering, and business stakeholders to identify gaps, refine controls, and drive remediation efforts. You will play a key role in maintaining compliance across multiple frameworks, including SOC 2, ISO 27001, GDPR, and FedRAMP, within a highly dynamic cybersecurity environment. This is a hands-on, detail-oriented role where your work directly contributes to organizational resilience and customer trust. The environment is fast-paced, mission-driven, and highly technical, with strong exposure to both strategic compliance design and operational execution.
Accountabilities
In this role, you will support and enhance the organization’s security compliance framework while ensuring alignment with regulatory and industry standards. Your responsibilities include:
The ideal candidate is an experienced security and compliance professional with strong analytical skills and deep knowledge of regulatory frameworks. You should be highly organized, detail-oriented, and comfortable working across distributed teams in a fast-paced environment. Key qualifications include:
We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.
We appreciate your interest and wish you the best!
Why Apply Through Jobgether?
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
This role sits at the intersection of cybersecurity, risk management, and regulatory compliance, supporting the continuous strengthening of a fast-scaling security compliance program. You will help ensure that internal systems, processes, and controls align with global security and privacy frameworks while maintaining readiness for external audits and certifications. The position involves close collaboration with internal security, engineering, and business stakeholders to identify gaps, refine controls, and drive remediation efforts. You will play a key role in maintaining compliance across multiple frameworks, including SOC 2, ISO 27001, GDPR, and FedRAMP, within a highly dynamic cybersecurity environment. This is a hands-on, detail-oriented role where your work directly contributes to organizational resilience and customer trust. The environment is fast-paced, mission-driven, and highly technical, with strong exposure to both strategic compliance design and operational execution.
Accountabilities
In this role, you will support and enhance the organization’s security compliance framework while ensuring alignment with regulatory and industry standards. Your responsibilities include:
- Supporting the maintenance and continuous improvement of a comprehensive security compliance program aligned with global regulations and frameworks.
- Performing framework mapping, control validation, and ongoing monitoring of compliance across systems and processes.
- Maintaining and optimizing key compliance programs such as Third-Party Risk Management (TPRM) and Security Awareness Training.
- Supporting internal audits, including tracking findings, coordinating remediation, and ensuring closure of compliance gaps.
- Assisting in external audit readiness and execution (e.g., SOC 2), including documentation, evidence collection, and follow-up coordination.
- Applying expertise in frameworks such as SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS, CMMC, NIST 800-171, and FedRAMP to ensure ongoing compliance.
- Collaborating cross-functionally to integrate compliance requirements into business and technical processes.
- Monitoring emerging security threats, privacy regulations, and compliance best practices to continuously strengthen the compliance posture.
- Supporting structured, methodical execution of compliance initiatives across multiple stakeholders.
The ideal candidate is an experienced security and compliance professional with strong analytical skills and deep knowledge of regulatory frameworks. You should be highly organized, detail-oriented, and comfortable working across distributed teams in a fast-paced environment. Key qualifications include:
- Bachelor’s degree in Information Security, Computer Science, IT, Law, Compliance, or related field (or equivalent experience).
- 5+ years of experience in security, privacy, or compliance roles, including internal audit exposure.
- Strong knowledge of regulatory frameworks such as SOC 2, ISO 27001, GDPR, HIPAA, PCI DSS, NIST 800-171, CMMC, and FedRAMP.
- Experience with framework/control mapping, compliance monitoring, and risk assessment processes.
- Familiarity with compliance automation and GRC tools (e.g., Drata, OneTrust) and TPRM platforms.
- Strong communication and documentation skills, with the ability to translate technical concepts for diverse audiences.
- Excellent analytical and problem-solving abilities with strong attention to detail.
- Ability to collaborate effectively across multiple stakeholders in remote or distributed environments.
- Relevant certifications such as CISA, CIPP, CIPM, or CIPT are a plus.
- Competitive compensation package aligned with cybersecurity and compliance expertise.
- Health, dental, vision, and life insurance coverage (for eligible employees).
- 401(k) retirement savings plan.
- Discretionary time off policy supporting flexibility and work-life balance.
- Opportunity to work in a high-growth cybersecurity environment with national security-grade expertise.
- Exposure to leading security frameworks and advanced compliance automation tools.
- Collaborative and mission-driven culture focused on security excellence and continuous improvement.
We use an AI-powered matching process to ensure your application is reviewed quickly, objectively, and fairly against the role's core requirements. Our system identifies the top-fitting candidates, and this shortlist is then shared directly with the hiring company. The final decision and next steps (interviews, assessments) are managed by their internal team.
We appreciate your interest and wish you the best!
Why Apply Through Jobgether?
Data Privacy Notice: By submitting your application, you acknowledge that Jobgether will process your personal data to evaluate your candidacy and share relevant information with the hiring employer. This processing is based on legitimate interest and pre-contractual measures under applicable data protection laws (including GDPR). You may exercise your rights (access, rectification, erasure, objection) at any time.
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.