This position is posted by Jobgether on behalf of FormAssembly. We are currently looking for a Senior Security Compliance Analyst in United States.
Join a growing, remote-first SaaS company as a Senior Security Compliance Analyst, where you’ll lead enterprise-level compliance efforts and own key security certifications such as FedRAMP, DoD IL2-5, SOC 2, and ISO 27001. You’ll work cross-functionally with teams across Engineering, Product, Sales, and HR to manage audit cycles, assess risk, and strengthen security practices. This role plays a pivotal part in maintaining the organization’s credibility with government and enterprise clients. It's an excellent opportunity for experienced professionals ready to make a high-impact contribution in a flexible, dynamic work environment.
Accountabilities:
- Lead and manage compliance initiatives including FedRAMP, DoD IL2-IL4, SOC 2, PCI-DSS, and ISO 27001.
- Serve as the internal subject matter expert across all relevant security frameworks and regulations.
- Conduct detailed technical control assessments, policy reviews, and risk-based walkthroughs.
- Provide executive-level reporting on residual risk, vulnerabilities, and overall compliance posture.
- Support security automation and continuous monitoring projects to enhance efficiency.
- Respond to customer security assessments, vendor questionnaires, and RFPs with technical expertise.
- Guide teams through audit processes and ensure successful ongoing certification maintenance.
- Champion the development of policies, training programs, and implementation of best practices.
- Act as the primary point of contact for government security compliance matters.
Requirements
- Minimum of 5 years of experience managing security compliance audits, especially FedRAMP, DoD IL2-5, SOC 2, ISO 27001, and PCI.
- Deep understanding of NIST 800-53, DoD SRG, and associated continuous monitoring processes.
- Experience collaborating with Engineering, IT, Product, and other business teams.
- Familiarity with privacy and security frameworks like GDPR, CCPA, CPRA, and EU Cyber Resilience Act is a plus.
- Proven ability to produce clear and actionable risk assessments and remediation strategies.
- U.S. citizenship is required due to the nature of compliance regulations.
- Must hold either a CISSP or Security+ certification in good standing.
- Additional certifications such as CISM, CISA, CRISC, SANS GIAC, or ISO 27001 Lead Auditor are a strong plus.
Benefits
- Salary range: $115,000 - $130,000
- 100% remote work with flexible scheduling
- Health, dental, and vision insurance (U.S.-based team members)
- Mental health support via SpringHealth
- 401(k) with 4% company match
- Unlimited PTO (minimum 2 weeks use required)
- 9 paid company holidays
- Up to 16 weeks of paid parental leave
- Annual budget for professional development
- Charitable donation matching
- Company-provided Mac laptop
- A vibrant and collaborative remote culture with a focus on work-life balance
Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.
When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.
The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role.
Once the shortlist is completed, we share it directly with the company that owns the job opening. The final decision and next steps (such as interviews or additional assessments) are then made by their internal hiring team.
Thank you for your interest!
#LI-CL1