Compliance Analyst II, GRC, Product Line Readiness

$157,300 - $185,000/Yr

Hashicorp - State College, PA

posted 22 days ago

Full-time - Mid Level
Remote - State College, PA
Professional, Scientific, and Technical Services

About the position

The Compliance Analyst II - Governance, Risk and Compliance role at HashiCorp focuses on supporting compliance enablement across product lines by integrating security and compliance requirements into the product lifecycle. The position requires collaboration with cross-functional teams to ensure products meet compliance standards, conducting readiness assessments, and leading audits. The ideal candidate is self-motivated, thrives in a fast-paced environment, and can work independently in a remote setting.

Responsibilities

  • Work closely with product development teams to integrate security and compliance requirements into the product lifecycle.
  • Conduct real-time readiness assessments of products and features during development, identifying potential compliance risks and providing actionable recommendations.
  • Define the scope of compliance controls and requirements for new and existing products.
  • Provide ongoing guidance to product teams on security controls and industry best practices.
  • Leverage technical expertise to collaborate with the GRC team during audits.
  • Lead internal and external audits related to product compliance, ensuring documentation and controls are up to date.
  • Collaborate with cross-functional teams to embed security controls into development and operational processes.
  • Help develop and deliver training on security and compliance requirements.
  • Identify assets utilized in services/products that impact compliance and ensure they are documented in the compliance program.
  • Assist with internal audits, control testing, and external audits.
  • Work with Engineering teams to identify automation opportunities for manual tasks.

Requirements

  • Minimum of 2-5 years of related professional compliance and controls program experience.
  • Previous experience in a cloud environment, preferably AWS and/or Azure.
  • Experience with modern DevOps patterns and practices, with a strong understanding of embedding security controls into these processes.
  • Advanced level knowledge of controls and control frameworks.
  • Comfortable working with both deeply technical and non-technical resources.
  • Highly responsive with the ability to prioritize and track multiple projects and tasks in parallel.
  • Excellent communication and collaboration skills.

Nice-to-haves

  • Experience working in a large, multi-cloud environment.
  • Deep understanding of common security compliance frameworks, attestations, and certifications.
  • Understanding of infrastructure as code and related controls.
  • Previous experience at a technology or SaaS company in a similar role.
  • Existing experience with HashiCorp products.
  • Experience working with OSCAL.

Benefits

  • Competitive salary based on experience and location.
  • Remote work flexibility.
  • Opportunities for professional development and training.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service