Senior Compliance Analyst

The Senior Compliance Analyst will serve as the internal lead for SOC 2 Type II compliance efforts, including control mapping, evidence collection, and audit coordination. Maintaining and improving the control environment to ensure continuous compliance with SOC 2 and other applicable frameworks is crucial. Overseeing the organization’s privacy program to ensure compliance with GDPR, CCPA/CPRA, EU AI Act, and emerging U.S. state data privacy laws will also be required. This role involves owning and managing the third-party risk management lifecycle, including onboarding reviews and periodic reassessments. Serving as the primary point of contact for responding to customer security questionnaires, RFPs, and due diligence requests is a key function, enabling trust in our security and compliance posture.