Senior IT Compliance Analyst

The Senior IT Compliance Analyst is a key member of the IT Compliance program, responsible for leading assigned compliance initiatives, in support of the company’s organizational objectives. The Senior IT Compliance Analyst mitigates risk to ensure that IT business practices are conducted in accordance with all approved policies, compliance frameworks and procedures.

• Lead SOX, SOC 2 Type 2, and/or ISO 27001 compliance frameworks to meet compliance requirements
• Lead cross-functional business and governance projects, including defining, implementing, and analyzing IT processes and procedures that support the company’s business objectives
• Lead compliance audits and assist in preparing documentation for program reviews
• Utilize AI-enabled tools and technologies to support compliance assessments, audit preparation, documentation analysis, and ongoing monitoring of controls
• Analyze, design, implement, and improve compliance programs, processes and controls
• Collaborate with other departments across  and subsidiaries to ensure effective communication, training, and understanding of IT compliance frameworks, policies and procedures
• Monitor IT policies to ensure compliance with all aspects of federal, state, and local laws and regulations. Maintain the policy library to ensure it is up to date
• Recommend mitigation strategies to reduce risk to the environment
• Research and respond to security questionnaires from current and potential partners and customers
• Evaluate waivers/exceptions to policies to ensure they are accurate and still meet their initial intent
• Support other IT Compliance initiatives as needed
• Other duties as assigned

• B.S. (or higher-level degree) in Computer Science or a similar program with strong academic performance preferred
• Advanced Technical Writing
• Knowledge and understanding of compliance mandates, frameworks, and standards such as SOX ITGCs, SOC 2 Type 2, ISO 27001, and NIST 800-53
• Experience using AI-enabled tools to support compliance, risk management, audit activities, or documentation review, with an understanding of related governance and risk considerations
• Experience leading the entire lifecycle of SOC 2 Type 2 attestations and ISO 27001 certifications, in a first or second line of defense role. Responsibilities included planning, gap assessment, policy/procedure creation and updates, gathering evidence, stakeholder coordination, including internal and external auditors, reporting status updates, addressing issues/findings, and other activities to achieve a successful attestation and certification.
• Knowledge and experience identifying Information Technology and Information Security risks and designing and implementing controls
• Familiarity with GRC and compliance management tools such Service Now GRC, Drata, Vanta, One Trust, or similar platforms used for managing risk, controls, and audit workflows
• Ability to effectively communicate with both technical and non‑technical personnel
• Ability to interpret management, operational and technical implementation methods to determine compliance with existing controls
• Proven team experience and comfort in a team‑oriented environment
• Passion for working with technology and excitement for creating high quality consumer technology product
• Minimum 5 years of relevant experience

Please note that sponsorship of new applicants for employment authorization, or any other immigration‑related support, is not available for this position at this time.

• Collaborate with outstanding people:
  We hire only the best. Our standards are high and our employees enjoy working alongside other high achievers.
• Make an immediate impact:
  New employees can expect to be given real responsibility for bringing new technologies to the marketplace. You are empowered to perform as soon as you join the  team!
• Gain well‑rounded experience:  offers a diverse and dynamic environment where you will get the chance to work directly with executives and develop expertise across multiple areas of the business.
• Community and Camaraderie:
  One of our core values is to 'Keep It Fun,' which to us means fostering a strong sense of community. Our culture is built on…