Senior Compliance Advisor

This is a fully remote position, open to applicants in United States.

📋 Description

• Provide guidance to clients regarding information security policies, control evidence, and overall audit preparedness as they get ready for audits and evaluations.

• Manage comprehensive control mapping and cross-framework crosswalk analysis.

• Act as the primary compliance authority in meetings with customers.

• Spearhead the development and deliver presentations on GRC industry best practices and address common compliance inquiries from clients.

• Foster ongoing internal learning and team success by sharing knowledge through mentorship, research, and internal presentations.

• Collaborate with Customer Success and Account Managers to offer current clients additional compliance advisory services as necessary.

• Engage with the Sales team, as necessary, to respond to inquiries from prospective customers.

• Conduct customer-facing webinars to address questions regarding audit and GRC best practices.

• Review marketing materials and blog posts for accuracy as needed.

⛳️ Requirements

• A minimum of 4 - 6 years of experience in conducting audits and assessments for compliance programs based on SOC 2 and ISO 27001/27002.

• Experience with additional frameworks such as HIPAA, PCI, GDPR, CMMC, FedRAMP, CCPA, or other significant compliance and control regulations.

• A solid foundation and understanding of GRC (Governance, Risk, and Compliance) programs, processes, functions, and operational teams.

• Familiarity with GRC tools and/or cybersecurity technologies; hands-on experience with a GRC automation platform is advantageous.

• Previous work experience at consulting, audit, and advisory firms or at GRC/cybersecurity technology companies is highly preferred.

• A proven self-starter capable of identifying priorities, taking ownership of tasks, and quickly learning and advising on new compliance frameworks.

• An aptitude for developing and nurturing positive relationships with clients.

• A proactive approach to managing your workload and daily tasks, with the ability to prioritize multiple responsibilities effectively.

• A continuous ability to refine and enhance existing processes.

• Basic technical fluency to facilitate evidence automation and customer enablement — comfort in reading and interpreting API responses and/or basic scripting (Python, PowerShell, or SQL) to simplify repetitive evidence-collection tasks.

• One or more industry certifications such as CISA, CISSP, CIPP/E or CIPP/US, CRISC, or ISO 27001 Lead Auditor / Lead Implementer.

🏝️ Benefits

• Up to 100% employer-paid premiums for medical, dental, and vision coverage for employees and their dependents.

• Comprehensive wellness benefits and healthcare concierge services designed to support your needs beyond traditional insurance.

• 401(k) plan.

• Company-paid life and disability insurance.

• Tax-advantaged spending accounts.

• A paid Parental Leave policy after six months of employment.

• Access to Kindbody fertility and family-building benefits.

• Generous annual stipends for both professional and personal development.

• Flexible vacation policy, paid holidays, and other perks to recharge.

• Stock equity to ensure that as the company grows, you share directly in that success.