Risk and Compliance Analyst

New York, NY

Applications have closed

Palantir Technologies

We build software that empowers organizations to effectively integrate their data, decisions, and operations.

View company page

A World-Changing Company
At Palantir, we’re passionate about building software that solves problems. We partner with the most important institutions in the world to transform how they use data and technology. Our software has been used to stop terrorist attacks, discover new medicines, gain an edge in global financial markets, and more. If these types of projects excite you, we'd love for you to join us.
The Role
As a member of Palantir's Technical Compliance team, you will develop a deep understanding of Palantir's control environment, infrastructure, and products. You will work with engineers, security, clients, and auditors to navigate and manage compliance frameworks (e.g., ISO/SOC/NIST) in order to provide practical guidance on technical documentation, operational concerns, and sustainable processes that will allow us to continue to grow quickly & efficiently while also maintaining our current compliance obligations.
We are looking for a technically experienced and innovative security, compliance, and audit professional that understands IT processes, has strong communications skills, and can manage complex cross organizational projects. 

Core Responsibilities

  • Support internal and external security assessments of new and existing Palantir services and infrastructure including operational, regulatory, and contractual requirements (e.g. SOC 2, ISO 27001, ISO 9001).
  • Develop and maintain a technical understanding of Palantir’s control implementations and articulate these to various audiences, including internal and external auditors.
  • Partner with engineers and various internal teams to interpret and map compliance requirements to controls implementations.
  • Improve and automate controls and documentation for internal systems, processes, and policies.
  • Guide technical and operational decision-making towards future product offerings and efficient organizational processes.

What We Value

  • 2+ years of experience performing and running audits, certification programs or control assessments.
  • Big 4 experience or compliance risk advisory experience preferred.
  • CISA, CIA, CISSP or other related certifications a plus.
  • Strong knowledge of and experience in security risk management and with frameworks including related regulatory compliance requirements (e.g. SOC 1/2, ISO 27001, PCI, HITRUST) required.
  • Experience assessing security, compliance, and privacy controls across a variety of technical and organizational environments.
  • Familiarity with distributed applications on cloud infrastructure and a broad range of technical concepts relevant to cloud computing environments including logical access controls, agile development, information security, network security, privacy, etc.
  • Ability to clearly communicate compliance requirements to engineering teams and the ability to interpret technical implementations and communicate them to to external auditors.
  • Comfortable planning, executing, and delivering on multiple long-term projects with external dependencies in tandem.
Palantir is committed to promoting a culture of diversity, equity, and inclusion and is proud to be an Equal Employment Opportunity and Affirmative Action employer. We believe that all Palantirians share the responsibility of upholding our commitment to these values and encourage candidates from a wide range of backgrounds, perspectives, and lived experiences to join us in solving the world’s hardest problems. Palantir does not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. Palantir is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. Please see the United States Department of Labor’s EEO poster and EEO poster supplement for additional information.
Palantir is committed to making the job application process accessible to everyone. If you are living with a disability (visible or not visible) and need to request a reasonable accommodation for any part of the application or hiring process, please reach out and let us know how we can help.

Tags: Agile Audits CIA CISA CISSP Cloud Compliance HITRUST ISO 27001 Network security NIST Privacy Risk management Security assessment SOC 1 SOC 2

Perks/benefits: Career development

Region: North America
Country: United States
Job stats:  16  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.