Назад
Company hidden
14 часов назад

Senior Security Compliance Analyst (PCI DSS & SOC 2)

119 078 - 174 648$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Senior Security Compliance Analyst (PCI DSS & SOC 2): Leading and sustaining compliance for multiple PCI DSS environments while supporting the maturity and execution of the SOC 2 program with an accent on continuous compliance monitoring and audit readiness. Focus on designing effective controls, identifying gaps, and driving remediation efforts across cloud-native and hybrid environments.

Location: Must be based in the United States (Fully remote)

Salary: $119,078–$174,648 per year

Company

hirify.global is an industry leader in identity-centric security solutions, serving over 150 countries with scalable technologies.

What you will do

  • Lead end-to-end PCI DSS compliance activities and certification processes.
  • Support the evolution and execution of the SOC 2 program, including control design and testing.
  • Interpret and operationalize security requirements into actionable control activities for engineering teams.
  • Partner with control owners to ensure alignment with PCI DSS and Trust Services Criteria.
  • Coordinate external audits, manage evidence collection, and track remediation of findings.
  • Communicate compliance and security risks to stakeholders across the organization.

Requirements

  • Must be a US citizen
  • 5+ years of experience in security compliance, audit, or GRC.
  • Hands-on technical and audit experience with PCI DSS and SOC 2.
  • Strong understanding of cloud environments, shared responsibility models, and security domains.
  • Experience working in SaaS or cloud-native environments.
  • Ability to work cross-functionally with engineering and infrastructure teams.

Nice to have

  • Experience with additional frameworks like FedRAMP or ISO 27001.
  • Proficiency with modern GRC platforms and control automation.
  • Relevant certifications such as CISSP, CISA, CISM, or QSA.

Culture & Benefits

  • Comprehensive health and well-being programs including medical, vision, and dental.
  • Generous 401(k) matching contribution.
  • Paid personal time off plus 12 paid holidays.
  • Parental leave and education reimbursement programs.
  • Commitment to diversity, inclusion, and professional career growth.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →