Senior Compliance Analyst - Distributed US, Canada

Databases are the beating heart of every business in the world.

Cockroach Labs is the team behind CockroachDB, the cloud-native, distributed SQL database that scales fast, survives anything, and thrives anywhere. We created CockroachDB and our self-service, fully managed cloud offerings of CockroachDB (Dedicated and Serverless) because we believe that what you build and where it takes you should not be restricted by the capabilities of your database. Join us on our mission to enable every developer to build world-changing applications.

About the Role

Cockroach Labs is hiring a compliance and risk analyst to support our Compliance Manager. This is a hands-on role in which you’ll be interfacing directly with our operational and internal security teams, and third party auditors.

In this role, you’ll have an opportunity to make a significant impact by providing support to expand our compliance program beyond SOC 2 compliance and scale up our compliance efforts as our customer base grows.

You Will

• Support our existing information security compliance program. 
• Review and provide insights on our processes for managing security and compliance policies.
• Support compliance policies and processes for data security and privacy (such as SOC2, GDPR, and potentially ISO 27001).
• Collaborate with internal teams to address pre-sales security and compliance questionnaires and attract customers by upholding modern compliance programs.
• Manage internal audits.
• Work with external auditors and coordinate audits internally.
• Monitor controls and address violations and gaps.
• Coordinate compliance work streams across all functional areas of Cockroach Labs.

The Expectations

In the first month, you will focus on learning about CockroachDB technology, understanding the fundamentals of how CockroachDB and CockroachCloud work and how our customers use them. You’ll also become familiar with the different departments within the company and how they function relative to our compliance efforts. You’ll learn about our current security processes and risk management practices.

In your second month, you will become an integrated member of our security and compliance team and start owning some of the compliance work that is in progress. You will start to take ownership of items on our planned roadmap and begin identifying areas of improvement.

By the end of your third month you will be a fully-fledged member of the team and will own all ongoing compliance work. You will be able to interface directly with customers when necessary and own the execution of all compliance and risk management activities. You will also be able to support developed plans to implement the next planned compliance certification.

You Have

• Broad familiarity with compliance frameworks such as SOC 2, GDPR, SOX, and ISO 27001.
• An understanding of security technologies such as MDM, anti-virus, and intrusion detection systems (IDS) and how they can be deployed in a cloud infrastructure company.
• Previous experience working in a SaaS software or hosted infrastructure environment.
• Some experience interfacing with enterprise customers and answering customer security questionnaires in a compliance role.
• Strong organizational skills and attention to detail.

The Team

Reporting to Adam Brennick - Senior Compliance Manager

Adam Brennick has a diverse compliance background, having supported compliance efforts across companies in multiple industries. Prior to his compliance-focused work, he held program manager, project manager, and IT manager roles at larger organizations, including Flex and Dell. When he is not auditing or conducting risk assessments, Adam enjoys spending time with his two young kids, golfing, and playing retro video games.

Mike Geehan - Director of Engineering (Security, Compliance & Corporate Engineering)

Mike Geehan is responsible for the safety and security of CockroachDB Cloud and surrounding infrastructure. Mike joined Cockroach Labs from a DC-based start up, and prior to that spent time in larger tech companies in a wide range of roles. Mike is focused on team development - enabling and growing his team is paramount to its success, and subsequently the business as a whole. Mike is based in Houston, Texas, and outside of work is focused on his family, his bikes, and getting a cycling-related non-profit organization off the ground. 

Our Benefits

• Paid parental leave (with baby bucks)
• Flex Fridays
• Flexible time off & flexible hours
• Learning and Development budget
• Relocation support or home office allowance if remote

Cockroach Labs is proud to be an Equal Opportunity Employer building a diverse and inclusive workforce. If you need additional accommodations to feel comfortable during your interview process, please email us at accessibility@cockroachlabs.com.

The annual anticipated base salary range for U.S. candidates for this role is USD $105,000 to $160,000, plus commission if a sales role. We set standard ranges for all U.S.-based roles based on function, level, and geographic location, benchmarked against similar stage growth companies. In order to be compliant with local legislation, as well as to provide greater transparency to candidates, we share salary ranges on all job postings regardless of desired hiring location.  Actual salaries may vary and fall outside of this range depending on factors such as a candidate’s qualifications, geographic location, skills, experience, and competencies. In addition, we are often open to a wide variety of profiles, and recognize that the person we hire may be less experienced (or more senior) than this job description as posted. Salary is one component of the Cockroach Labs’ total rewards package, which includes stock options, health insurance, life and disability insurance, funds towards professional development resources, unlimited PTO, paid holidays, and parental leave, to name a few! Salaries for candidates outside the U.S. will vary based on local compensation structures.