Sr. Compliance & Risk Analyst
Location: Hybrid – Onsite Tues–Thurs | Remote Mon & Fri
Type: Full-Time | Direct Hire
Company Overview
Our client is a fast-growing, infrastructure-focused technology company delivering mission-critical services across the Southeast. They provide a blend of network, cloud, and data management solutions supporting enterprise, hyperscale, and edge use cases.
With a strong commitment to innovation and operational excellence, this organization maintains a collaborative environment where compliance, security, and risk mitigation play a key role in supporting customer trust and business scalability.
Role Summary
The Sr. Compliance & Risk Analyst will support the company’s enterprise-wide compliance, audit, and risk management programs. This role reports to the Director of Security & Compliance and will be involved in day-to-day execution of policy governance, third-party risk, audit readiness, and framework alignment across multiple regulatory domains.
Ideal candidates are detail-oriented, proactive professionals who have successfully contributed to programs supporting frameworks such as SOC 2, ISO 27001, HIPAA, and PCI-DSS within a cloud, infrastructure, or technology-driven organization.
Key Responsibilities
Compliance Operations
- Assist in the implementation and management of compliance programs (SOC 2, PCI-DSS, ISO 27001, HIPAA, NIST).
- Track and report on control effectiveness and program maturity.
- Support policy development and regular policy reviews aligned with changing regulations and internal priorities.
Risk & Assessment
- Conduct internal risk assessments and third-party/vendor evaluations.
- Document findings and support development of risk mitigation strategies.
- Collaborate with cross-functional teams (IT, Security, Legal, Sales) to align risk posture with business goals.
- Support sales enablement by completing compliance questionnaires and responding to client RFPs/security inquiries.
Audit & Documentation
- Manage internal/external audit requests and organize required evidence.
- Maintain audit-ready documentation for certification frameworks.
- Conduct internal control reviews to assess the effectiveness and readiness of internal controls.
Governance & Awareness
- Assist with updates to internal security policies and procedures.
- Promote internal compliance awareness through training and engagement.
- Ensure accurate documentation is readily accessible and communicated across teams.
Qualifications
- 5+ years of experience in risk, compliance, or audit roles—ideally within a technology, SaaS, or infrastructure organization.
- Experience supporting regulatory frameworks such as SOC 2, ISO 27001, PCI-DSS, HIPAA, or NIST .
- Familiarity with GRC platforms and audit management tools.
- Strong writing and communication skills for policy creation and stakeholder reporting.
- A bachelor's degree is preferred; certifications such as CISA, CRISC, or similar are a plus.
- Ability to multitask across projects and maintain meticulous documentation.
- Experience with internal or external pen testing.
This is a high-impact role supporting a growing compliance function in a collaborative, engineering-driven culture. The company offers a modern hybrid work schedule and the opportunity to help shape long-term governance and security practices.