Compliance Analyst
New
C
CommvaultCyber Resilience
Location: United StatesFull-TimeMiddle
Salary54,400 - 120,750 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 2-4 years
- Required Skills
- Risk ManagementHIPAA
Requirements
- 2-4 years of experience in compliance, GRC, security assurance, or a related discipline within a technology or SaaS environment.
- Hands-on experience operating compliance programs aligned to multiple frameworks (e.g., ISO 27001, SOC 2, HIPAA, PCI DSS).
- Strong understanding of control design, implementation, and testing, as well as compliance best practices.
- Experience supporting external audits and working directly with auditors, assessors, or certification bodies.
- Demonstrated ability to manage complex, overlapping priorities with strong attention to detail and sound judgment.
- Strong written and verbal communication skills, including the ability to engage effectively with internal stakeholders and external customers.
- Ability to operate independently as a senior individual contributor while collaborating effectively across teams.
- Experience with GRC tools, compliance management platforms, policy development, control testing, or vendor risk management is a plus.
Responsibilities
- Manage and maintain compliance controls across multiple global security and regulatory frameworks, including ISO 27001, SOC 2, HIPAA, PCI DSS, and other applicable standards.
- Lead gap assessments and readiness activities for new or evolving compliance frameworks and regulatory requirements.
- Support and coordinate external audits and certifications, including evidence collection, auditor engagement, issue tracking, and remediation management.
- Support the development and management of policies and procedures.
- Assist in the coordination of company-wide training and awareness initiatives.
- Maintain high-quality compliance documentation, evidence repositories, and control artifacts to support audits and customer inquiries.
- Partner closely with Security, IT, Engineering, Legal, Privacy, and Operations teams to implement controls and drive remediation efforts.
View Full Description & ApplyYou'll be redirected to the employer's site