×
Register Here to Apply for Jobs or Post Jobs. X

Sr. Security Compliance Analyst - PCI DSS & SOC ; East Coast

Job in Shakopee, Scott County, Minnesota, 55379, USA
Listing for: Entrust
Full Time position
Listed on 2026-07-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Job Description & How to Apply Below
Position: Sr. Security Compliance Analyst - PCI DSS & SOC 2  (East Coast)
** Join us at Entrust *
* At Entrust, we're shaping the future of identity centric security solutions. From our comprehensive portfolio of solutions to our flexible, global workplace, we empower careers, foster collaboration, and build solutions that help keep the world moving safely. 

** Get to Know Us *
* Headquartered in Minnesota, Entrust is an industry leader in identity-centric security solutions, serving over 150 countries with cutting-edge, scalable technologies. But our secret weapon? Our people. It's the curiosity, dedication, and innovation that drive our success and help us anticipate the future. 

*
* Position Overview:

*
* Entrust is seeking a highly skilled Senior Security Compliance Analyst to lead and sustain compliance for multiple PCI DSS environments while supporting the maturity and execution of our SOC 2 program. This role is responsible for designing and executing continuous compliance monitoring activities, identifying gaps and leading associated remediation efforts, planning and leading third-party audits, and measuring control effectiveness across cloud-based, on-prem and hybrid environments.

The ideal candidate brings deep PCI DSS expertise, strong SOC 2 familiarity, and modern GRC experience that enable scalable, automated, and evidence-driven compliance operations.

This position partners closely with Security, Engineering, Product, and third-party providers to ensure controls are designed effectively, operating consistently, and aligned to business, statutory and regulatory expectations.

** How You Will Make an Impact:*
* Lead and support end-to-end compliance efforts across multiple environments, including readiness assessments, audits, and continuous monitoring activities to ensure sustained security posture and audit readiness. Responsibilities include, but are not limited to:

+ Leading PCI DSS compliance-related activities and certification;

+ Supporting the evolution and execution of the SOC 2 program, including control design, testing, and evidence collection;

+ Maintaining required evidence artifacts and ensuring traceability of evidence;

+ Interpreting and operationalizing security and compliance requirements into actionable control activities for engineering and operations;

+ Serving as SME for PCI DSS and SOC 2 compliance, advising internal teams and customers;

+ Partnering with control owners to ensure controls meet PCI DSS requirements and Trust Services Criteria (Security, Availability, Confidentiality, etc.);

+ Supporting external audits by preparing evidence, responding to auditor requests, coordinating audit activities, and tracking remediation;

+ Driving coordination with third parties (e.g., service providers, hosting partners) to ensure shared control alignment;

+ Ensuring audit readiness through continuous proactive gap assessments and control testing throughout the year;

+ Identifying, assessing, and communicating compliance and security risks to stakeholders;

+ Identifying, tracking, and driving closure of audit findings and control deficiencies; and

+ Contributing to the development and maintenance of security policies, standards, and procedures.

*
* Basic Qualifications:

*
* + 5+ years in security compliance, audit, or GRC with a strong understanding of administrative, technical, and physical controls, including how they support one another

+ Hands-on technical and audit experience with PCI DSS and SOC 2 compliance

+ Ability to work across multiple time zones with virtual global teams

+ Strong technical understanding of:

+ Cloud environments and shared responsibility models

+ Access control, change management, logging and altering, and vulnerability management and other security domains

+ Experience working in SaaS or cloud-native environments

+ Experience working cross-functionally with engineering and infrastructure teams

+ Must be a US citizen

*
* Preferred Qualifications:

*
* + Experience supporting multiple compliance frameworks (PCI DSS, PCI CP, SOC 2, FedRAMP, ISO 27001, etc.)

+

Experience with modern GRC platforms and control automation

+ Familiarity with continuous compliance / continuous monitoring models

+ Certifications such as: CISSP, CISA, CISM, CRISC, PCI…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary