Join Us in Shaping the Future of CryptocurrencyAt Kraken, our team of dedicated Krakenites is driven by a shared passion for cryptocurrency and blockchain technology. We strive to uncover and maximize the potential of these transformative innovations.Why Choose Kraken?Kraken is not just a company; it's a movement fueled by our commitment to the core values of crypto. As a part of our team, you'll contribute to our mission of accelerating the global adoption of cryptocurrency, empowering individuals towards financial freedom and inclusivity. For over ten years, our unwavering focus on this mission and our crypto ethos has drawn some of the brightest minds in the industry.Prior to applying, we encourage you to explore our Kraken Culture page to understand our values and internal culture better. Candidates should also become familiar with the Kraken app; learn how to create an account here.As a fully remote organization, we proudly have Krakenites in over 70 countries, communicating in more than 50 languages. Our team consists of industry leaders who create top-tier crypto products for seasoned traders, institutions, and newcomers alike. Kraken emphasizes leading security practices, crypto education, and exceptional customer support through our offerings, including Kraken Pro, Desktop, Wallet, and Kraken Futures.Become a part of the Kraken family and help us build the future of crypto!Proven Track RecordAbout the TeamKraken's elite Security Team is expanding. As we continue to enhance our information technology controls program, we are looking for a senior professional to join us...

At DNSFilter, our mission is to safeguard our customers and partners with exceptional products! We are transforming the landscape of network security by delivering fast, precise, and dependable threat protection and content filtering solutions. As a rapidly expanding company, we are committed to fostering a safer internet for businesses and organizations globally. Utilizing AI-powered threat intelligence, DNSFilter enables our customers to proactively block threats before they disrupt their networks. We cultivate a collaborative, innovative, and results-driven culture where every team member plays a vital role in our mission to enhance internet safety. As we continue to grow through innovative product enhancements, we are searching for a passionate Security & Compliance Analyst to lead our compliance initiatives and engage in hands-on security operations. This hybrid role consists of approximately 70% Governance, Risk, and Compliance and 30% Security Operations. You will be instrumental in maintaining our compliance framework while also delving into projects related to access management, device posture, and security observability. This position is not just about drafting policies that go unread; you will collaborate closely with our security team, engage with real systems, and make tangible improvements to our security posture. We welcome candidates with experience in fast-paced, small to mid-sized SaaS start-ups or scale-ups. This is a full-time position, preferably for candidates located in the United States. We understand that individuals bring diverse experiences and skills beyond technical requirements. If this role resonates with you, we encourage you to apply. We value diversity of experience and believe that a combination of skills and passion drives innovation and excellence. Therefore, we invite applicants from all backgrounds to apply!

At OneStudyTeam, a subsidiary of Reify Health, we are dedicated to accelerating clinical trials and enhancing the likelihood of new therapies receiving approval, with the ultimate aim of improving patient outcomes. Our innovative cloud-based platform, StudyTeam, digitizes research site workflows, enabling sites, sponsors, and other key stakeholders to collaborate more efficiently. Trusted by leading global biopharmaceutical companies, StudyTeam is utilized in over 6,000 research sites across more than 100 countries. Join us in our mission to enhance clinical research and patient care.One mission. One team. That’s OneStudyTeam.We are looking for a Senior Security Compliance Analyst with a solid background in Governance, Risk, and Compliance (GRC) to bolster our security and compliance initiatives within the healthcare sector. This pivotal role is essential for ensuring compliance with industry regulations, addressing customer audits, and upholding adherence to ISO 27001, HIPAA, and other critical security frameworks.The successful candidate will possess a meticulous attention to detail, capable of navigating complex regulatory landscapes, supporting both internal and external audits, and driving continuous enhancements in security governance. The ideal candidate will operate autonomously while fulfilling the following responsibilities.Key Responsibilities:Lead and facilitate customer security audits, addressing security questionnaires and demonstrating compliance with security frameworks.Prepare, coordinate, and oversee ISO 27001 audits, including evidence gathering, control implementation, and auditor engagement.Ensure ongoing compliance with HIPAA, NIST CSF, and other regulatory standards relevant to healthcare data security.Develop and uphold policies, procedures, and security documentation to meet regulatory and contractual requirements.Conduct gap analyses and risk assessments to pinpoint and mitigate compliance risks.Manage and enhance security governance frameworks, ensuring alignment with industry best practices and organizational objectives.Execute third-party vendor risk assessments, confirming adherence to security policies and contractual obligations.Monitor security controls to ensure effectiveness and promote ongoing improvement in line with security frameworks.Support security awareness training initiatives to ensure staff are well-versed in compliance responsibilities.Stay abreast of ISO 27001, HIPAA, NIST 800-53, and other pertinent standards, translating complex requirements into actionable policies.

About OpenSesame OpenSesame is your trusted ally in Workforce Reinvention amidst the evolving landscape of AI. We provide integrated software solutions, curated content, and expert services to seamlessly embed learning, HR, and work systems, empowering organizations to harness their human+AI potential and flourish through transformation. Learn more: www.opensesame.com/about About the Role As a Senior Security Analyst on our Compliance team, you will play a pivotal role in enhancing OpenSesame’s security framework in a dynamic, high-growth setting. We seek an individual with profound technical security knowledge, a proactive approach, and the ability to simplify intricate risks into effective, scalable solutions. This position encompasses vulnerability management, penetration testing, bug bounty programs, cloud and application security, and audit preparedness. Collaborating with teams across Engineering, DevOps, IT, and Compliance, you will enhance security processes, support compliance initiatives, and ensure that security is ingrained in our operations, particularly as we advance our AI security methodology. We value demonstrated experience in your career that showcases your capability to manage penetration testing programs, establish vulnerability management systems, implement security automation, and guide organizations in the secure adoption of modern technologies, including AI. You will thrive in this role if you are detail-oriented, collaborative, and eager to create programs that mitigate risks, enhance visibility, and foster safe innovation across the organization. Performance Objectives Gain a comprehensive understanding of OpenSesame’s external attack surface, vulnerabilities, and threat landscape by integrating data from CrowdStrike, AWS, GCP, and application security tools. Oversee external penetration testing engagements from start to finish, including vendor selection, scope design, execution supervision, remediation validation, and executive reporting. Establish and operationalize a structured vulnerability management program in collaboration with DevOps, Engineering, and IT to effectively prioritize and mitigate risks. Develop scalable evidence collection and control mapping workflows using Drata to enhance audit readiness and streamline processes.

**This position is contingent upon contract award**SOSi is looking for a dedicated Security & Compliance Analyst to fulfill mission requirements by developing, integrating, and maintaining a scalable and federated data ecosystem. This role is crucial for enhancing interoperability, governance, and mission-driven analytics for our Department of Defense (DoD) client. The primary goal is to address operational challenges between DoD, Intelligence Community (IC), interagency, and international partners, facilitating real-time information exchange and customized analytical capabilities.Key Responsibilities:Oversee and validate Kubernetes and data lake deployments to ensure compliance with Risk Management Framework (RMF), NIST 800-53, and DoD IL4/IL5 standards, in collaboration with cybersecurity teams.Maintain continuous monitoring dashboards and conduct vulnerability assessments of the deployed infrastructure and workloads, supporting the agency’s Authority to Operate (ATO) process and overall risk posture.Draft and update security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms) to reflect architectural changes and risk conditions.Implement encryption, logging, and identity access management policies (IAM, RBAC, audit logging) to ensure accountability across the Kubernetes-based data environment.Compile the Security & Compliance Assessment Report, summarizing control effectiveness, findings, and suggested remediation measures.

At Hot Topic, technology plays a vital role in driving our operations forward. We are seeking a dynamic Senior Information Security Compliance Analyst to join our team. This pivotal role involves the implementation and management of our information security compliance framework and program. You will collaborate closely with various departments, including IT, e-commerce, legal, and business units, to ensure that we meet all compliance requirements.The ideal candidate will possess extensive experience in compliance management frameworks and programs, a thorough understanding of information security technologies, and a solid knowledge of data privacy laws and regulations. This role requires effective collaboration with development teams, legal advisors, IT staff, engineering, and operational personnel to assess, report, and uphold compliance with security industry standards and regulatory mandates.This position requires on-site presence two days a week at our headquarters in City of Industry, CA.The salary range for this position is $100,000 - $115,000.Please note that the final salary will be determined based on various factors, including the candidate's education, location, qualifications, training, and experience.

At the forefront of technological innovation, Pure Storage is transforming the data storage industry. Join a team that values innovative thinking and offers opportunities for professional growth while collaborating with some of the brightest minds in the tech sector.If you're passionate about making a global impact and eager to explore countless opportunities, we invite you to become part of our mission.THE ROLEAt Pure Storage, Information Security is paramount. Our Security team, a critical engineering-focused unit, is dedicated to safeguarding both our corporate environment and our services. We prioritize staying ahead of the latest security technologies and proactively addressing the ever-evolving threat landscape.We are on the lookout for a proactive, detail-oriented Security Analyst, Compliance who can independently manage compliance certification programs with minimal supervision while actively supporting the overall compliance initiatives of our team.WHAT YOU'LL DOImplement and manage compliance certification programs (such as SOC 2, ISO 27001, FedRAMP, Common Criteria) to ensure all security and regulatory requirements are fulfilled.Work collaboratively with cross-functional teams (including Engineering, Legal, and Product) and liaise with external auditors/stakeholders to facilitate smooth project execution and successful outcomes.Support internal teams by conducting independent assessments and audits, translating complex security and compliance controls into actionable technical solutions and implementation strategies.Develop, track, and report on key compliance metrics (KCMs), continuously seeking process improvements to align with evolving industry standards and best practices.Create and maintain comprehensive compliance documentation, including control narratives, audit evidence, and supporting materials, ensuring they are accurate, up-to-date, and ready for audits.Independently oversee recurring tasks and events such as access reviews and vulnerability scans across various business units with different scopes.This is primarily an in-office role, and you will be expected to work from our Lehi, UT office in accordance with Pure's policies unless you are on PTO, business travel, or other approved leave.

Join Blackpoint Cyber as a Security Compliance Analyst and play a vital role in ensuring our cybersecurity compliance framework is robust and effective. In this fully remote position, you will collaborate with cross-functional teams to audit and enhance security policies, ensuring adherence to industry standards. Your analytical skills will be pivotal in identifying potential vulnerabilities and recommending solutions to mitigate risks.

Join Hive as a Security Compliance Analyst, where you will play a pivotal role in ensuring our information security governance and compliance standards are met. Collaborate with engineers and auditors to strengthen our security compliance framework. You will be responsible for addressing auditors' inquiries and managing on-call operations, while contributing to the risk management program led by our Information Security team. If you're passionate about securing innovative AI solutions, we want to hear from you!

About UsAt Rain, we are pioneering the future of payments on a global scale. Our dynamic team, composed of seasoned founders and innovators, is dedicated to making stablecoins accessible in the real world. We facilitate card transactions, cross-border payments, B2B purchases, remittances, and more, partnering with fintechs, neobanks, and institutions to create inclusive and efficient solutions. Join us in shaping a borderless financial future at a rapidly growing company backed by top investors in the fintech, crypto, and SaaS sectors.Our CultureWe embrace a flat organizational structure that empowers every team member to grow in alignment with their personal goals. Everyone, regardless of their role, is encouraged to share ideas and contribute to the company's roadmap and vision.Your RoleLead the compliance program for DORA, SOC 2, SOC 1, GDPR, and PCI, ensuring adherence to regulatory and audit standards.Oversee compliance audits and certifications from start to finish, including renewals and new certifications.Update and refine Rain’s policies to align with regulatory expectations consistently across all entities.Collaborate with engineering, security, legal, and operations teams to ensure operational compliance with our policies.Promote a proactive compliance culture by educating the team on obligations and integrating compliance into daily operations.Identify potential compliance gaps early and implement remediation strategies to ensure audit readiness.Support the team in enhancing compliance-related activities, including KYB, KYC, and AML processes, informed by operational data.QualificationsOpen to candidates based in the US and EU.3–7+ years of experience in compliance, GRC, or security assurance, preferably in fintech, payments, SaaS, or similar regulated sectors.Strong knowledge of SOC 2, SOC 1, GDPR, PCI, and other compliance frameworks.Excellent analytical and problem-solving skills.Strong communication skills and ability to work collaboratively.

Join Asana as a Security Risk and Compliance Analyst, where you will play a critical role in safeguarding our organizational assets and ensuring compliance with industry standards. You will collaborate with various teams to identify risks, implement security measures, and drive compliance initiatives across the company. Your expertise will contribute to our mission of enhancing security protocols and fostering a culture of safety and compliance.

Join our team as a Senior Compliance Analyst, where you will play a crucial role in ensuring that our operations align with regulatory standards and internal policies. You will assess compliance risks, conduct audits, and implement strategies to mitigate potential issues. This position offers an exciting opportunity to work collaboratively with various departments to enhance our compliance framework and safeguard our integrity.

The role of Senior Compliance Analyst at MicroVentures is crucial for ensuring that our operations adhere to regulatory standards while driving business growth. As part of our dynamic team, you will collaborate across various departments and offices to achieve compliance goals set by management. We seek a proactive, detail-oriented individual who thrives in a fast-paced financial environment and is adept at virtual communication.

Join our dynamic team at Collabera as a Senior Compliance Analyst. In this critical role, you will be responsible for ensuring that our operations comply with regulatory standards and internal policies. You will analyze compliance data, prepare reports, and collaborate with various departments to uphold our commitment to integrity and ethical practices.

**This position is contingent upon contract award**SOSi is on the lookout for a dedicated Security & Compliance Administrator to play a pivotal role in supporting mission objectives. This position involves a structured approach to developing, integrating, and maintaining a scalable, federated data ecosystem, aimed at enhancing interoperability, governance, and mission-driven analytics for our Department of Defense (DoD) clientele.Key Responsibilities:Oversee and validate Kubernetes and data lake deployments to ensure compliance with Risk Management Framework (RMF), NIST 800-53, and DoD IL4/IL5 standards, collaborating with agency cybersecurity teams.Develop and maintain continuous monitoring dashboards while performing vulnerability scans on deployed infrastructure and workloads, thereby aiding the agency’s Authority to Operate (ATO) process and overall risk posture.Draft and update essential system security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms), reflecting updates to architecture, controls, or risk conditions.Implement and enforce encryption, logging, and identity access policies (IAM, RBAC, audit logging) to ensure robust traceability and accountability throughout the Kubernetes-based data architecture.Compile the Security & Compliance Assessment Report, providing a detailed summary of control effectiveness, findings, and suggested remediation actions.

ABOUT CIM GROUP:CIM Group is a dynamic real estate and infrastructure firm committed to enhancing the communities we serve. Since our inception in 1994, we have evolved from our roots in Southern California to a diverse team of over 900 professionals executing impactful projects across North America. Our holistic approach combines ownership, operation, lending, and development to deliver sustainable infrastructure and create vibrant spaces for people to live, work, and enjoy. Join us in our mission to make a meaningful difference!POSITION OVERVIEW:As a Senior Compliance Analyst, you will collaborate closely with the 1st Vice President of Compliance to design, implement, and assess compliance initiatives that govern CIM’s public communications. The ideal candidate will possess a thorough understanding of SEC and FINRA advertising regulations, with the ability to articulate complex regulatory matters to business partners effectively. You will play a crucial role in developing innovative solutions that facilitate compliant and impactful public communications, while regularly engaging with various teams on diverse projects within the compliance department.

Join Lambda, a pioneering force in AI cloud infrastructure, dedicated to revolutionizing the way organizations harness computational power. Serving a diverse clientele that includes AI researchers and enterprise giants, Lambda's commitment is to make high-performance computing as accessible as electricity, empowering individuals and businesses alike to achieve superintelligence. If you're passionate about building the most advanced AI cloud platform, we would love to have you onboard.*Note: This role requires you to be present at our San Francisco or San Jose office 4 days a week, with Tuesday designated as the work-from-home day.Key ResponsibilitiesEnsure organizational security practices align with ISO 27001, 27701, PCI, SOC 2, and other regulatory frameworks to support business objectives.Oversee IT Risk Register, focusing on risk identification, tracking, and prioritization.Lead the remediation of control deficiencies and gaps.Provide expert guidance to Control Owners for the planning, design, implementation, and maintenance of security controls, policies, and standards.Engage with both technical and non-technical stakeholders to discuss cybersecurity risk management and program reporting.Support the Customer Trust program, which includes managing customer assessments and security questionnaires.Assist control owners with root cause analysis and monitor the progress of risk management action plans.Develop risk metrics for management regarding information security control maturity, compliance status, and performance findings. Support third-party risk management assessments to ensure compliance with information security requirements.Your ProfileMinimum of 8 years of experience in cybersecurity risk and controls management, with a deep understanding of frameworks like ISO 27001, 27701, PCI-DSS, SOC, NIST CSF, and other regulatory requirements.Proven experience in managing audits and certification programs, including scope planning and developing control procedures aligned with policies and standards.

Join Acumen LLC as a dedicated Information Security Compliance Analyst I, where you will play a crucial role in ensuring our information security policies and procedures are met. This position is perfect for individuals passionate about maintaining compliance and enhancing data protection measures.

CLEAR builds a secure identity platform used by over 38 million members worldwide. Our technology helps people move smoothly through airports, stadiums, and other venues, with a growing network of partners. Role Overview The Security Compliance Analyst will oversee IT General Controls (ITGCs) and support SOX audit readiness. This position focuses on strengthening compliance processes, improving the quality of evidence, and maintaining strong controls as CLEAR grows.