Compliance Analyst

This position helps ensure that the company remains in compliance with SaaS industry regulations and certifications.  This position reports to the Compliance Manager and works with various organizations at the company to help implement and maintain standards, policies, plans, processes, procedures, and other activities as required to meet corporate regulatory requirements.  This position will manage compliance projects, track compliance activities, develop reports, track metrics, conduct testing of internal controls and perform internal self-assessments and audits.  This position will occasionally interface with Third Party Assessment Organizations in support of external assessments and audits.

Responsibilities

This role will be responsible for, but not limited to, these activities –

• Engage with a variety of SailPoint teams in the activity required to maintain controls required of these certifications.
• Develop and maintain Compliance related documents such as Compliance project dashboard, compliance related processes and procedures, etc.  
• Manage and conduct on-going assessment of those departments, policies and protocols within the scope of the certifications; responsible for summarizing and reporting results of these self-assessments to SailPoint Management.
• Monitor and maintain established SailPoint Certification Program documentation required to support continual certification activity within SailPoint.
• Responsible for actively monitoring and reporting remediation activity required to address identified gaps through self-assessments and audits.
• Aid in the Identification of security risks and development of risk treatment plans. 
• Provide recommendations for improving the organization’s operations.
• Evaluate and provide reasonable assurance that risk management, controls and the governance systems are functioning as intended and will enable the organization’s objectives and goals to be met.
• Maintain positive and open communication with various internal teams
• Interface with outside parties in support of external audits and assessments.
• Manage Customer audit or assessment requests.
• Work with SailPoint management to ensure plans are in place to deal with compliance problems when they occur and before certifications are jeopardized.
• Assist Management to identify, implement, and maintain appropriate security and compliance measures.
• Leverage dashboards or platform specific consoles and repositories associated with certifications to represent threats and vulnerabilities in the environment.
• Assist in other compliance department duties and roles as required.

This position will require a general working knowledge of the processes and procedures required to develop, test, promote, manage, distribute, support and secure SailPoint products and services.

Requirements:

• 3-4 years of experience as a compliance analyst and/or IT auditor
• Experience with SOC 1 or SOC 2, ISO 27001, FedRAMP, PCI, C5, IRAP or similar compliance frameworks
• Project management experience
• General knowledge of IT systems, DevOps, IT security, AWS and Azure environment.
• General knowledge of SaaS SDLC.
• Well-versed in legal and regulatory guidelines and best practices
• Technical systems knowledge
• Strong analytical skills
• Strong attention to detail
• Ability to maintain confidentiality
• Ability to build strong relationships across cross-functional teams
• Strong technical writing and research skills
• Excellent communication, coordination and organizational skills

Any of the following certifications are a plus:

• CISA, CIA, CISSP, PMP

SailPoint is an equal opportunity employer and we welcome everyone to our team.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.