Senior Compliance and Risk Analyst

Calendly

Completely RemoteFull TimeInformation Technology
Posted Today

Job description

Responsibilities

  • Own and manage the organization's compliance program, including SOC 2 and ISO 27001 readiness and maintenance
  • Develop and execute a compliance roadmap aligned with business objectives and regulatory requirements
  • Lead internal and external audits by coordinating evidence collection and managing auditor relationships
  • Own the enterprise risk management process, including risk identification, assessment, and monitoring
  • Design, document, and improve internal controls aligned with SOC 2 and ISO 27001
  • Administer and optimize compliance automation platforms to improve workflow efficiency
  • Partner with Engineering, Security, Product, Legal, HR, and Operations to integrate compliance into business processes

Requirements

  • 5+ years of experience in compliance, risk management, audit, or GRC roles within a technology or SaaS environment
  • Experience leading compliance programs supporting SOC 2 and ISO 27001
  • Working knowledge of NIST, ISO 27001, GDPR, and HIPAA
  • Experience administering compliance automation platforms like Drata, Vanta, or Tugboat Logic
  • Strong understanding of internal controls and risk assessment methodologies
  • Excellent project management and analytical skills
  • Strong communication skills to translate technical requirements into business solutions

Preferred Qualifications

  • Experience leveraging AI to improve compliance processes
  • Experience scaling compliance programs within high-growth SaaS organizations
  • Hands-on experience developing a common controls framework
  • Familiarity with PCI DSS or FedRAMP
  • Professional certifications such as CISA, CRISC, CISSP, or CCSK

About the Company

Calendly is a leading scheduling platform used by millions of people to manage their time and coordinate meetings efficiently.

Skills & tools

GRCSOC 2ISO 27001

What the team is looking for

Use this list as a quick fit check before you apply.

  1. 015+ years compliance/risk/GRC experience in SaaS
  2. 02Experience with SOC 2 and ISO 27001
  3. 03Knowledge of NIST, GDPR, and HIPAA
  4. 04Experience with compliance automation platforms
  5. 05Strong project management and analytical skills
ScoutJobsAd

Wake up to a shortlist, not a search results page.

ScoutJobs scores every new listing against your CV, salary floor and visa. A handful of real matches by morning.

Get your daily matches