Senior Security Compliance Analyst

At Instabase, we're passionate about democratizing access to cutting-edge AI innovation to enable any organization to solve previously unsolvable unstructured data problems in their industry.  With customers representing some of the largest, and most complex institutions in the world, and investors like Greylock, Andressen Horowitz, and Index Ventures, our market opportunity is undeniable.

Instabase is a remote company rooted in flexibility. Employees can choose to work from one of our global offices in Menlo Park, New York, London, or Bangalore, fully remotely, or a mix of the two. At the center of our value proposition is our people, and we've built a fearlessly experimental, endlessly curious, customer focused team who together, are fundamentally changing how developers build and distribute intelligent business applications. 

Instabase is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, or disability status. Research shows that in order to apply for a job, women feel they need to meet 100% of the criteria while men usually apply after meeting about 60%. Regardless of how you identify, if you believe you can do the job and are a good match, we encourage you to apply.

The Senior Security Compliance Analyst is a business enabler responsible for supporting and executing critical portions of the compliance roadmap. As a technical leader of the GRC function, you will ensure that the regulatory roadmap supports business, sales, and revenue objectives while maintaining alliance with existing information security standards. 

You will work closely with security, legal, engineering, product, and other business units to ensure regulatory control requirements are translated into Instabase-structured language that is informed by the organization’s current security practices and standards. We are not a check-box security organization and as such you will have the opportunity to participate in control requirements and remediation initiatives that result in pragmatic solutions for Instabase and its customers.

What you’ll do:

• Own 3rd party / vendor risk assessments
• Document, track and follow-up on security and privacy related findings (e.g. non-compliance with security policies, vulnerability scan findings, maintaining risk register, etc)
• Respond to security requests/questions from customers and prospects
• Facilitate internal and external compliance assessments of our security program and partner with external auditors and internal stakeholders
• Establish policies, processes, and tooling that support a pull once, serve many audit-support functions
• Manage and maintain the common controls framework and ensure that controls are aligned with applicable security standards and regulations
• Monitor, investigate, and respond to security alerts to ensure the integrity and availability of Instabase services
• Collaborate with stakeholders across security, engineering, and legal to monitor and drive improvements to our controls
• In close partnership with control owners, translate control remediation opportunities into business-enabling processes and standards
• Lead continuous process improvement, automation and third-party tooling that support scalable compliance and audit support functions
• Act as a subject matter expert for applicable compliance standards and be a valued partner to the business and engineering teams in the implementation of the standards

About you:

• Experience leading internal or external security audits and assessments
• Experience implementing key security standards like SOC 2, ISO 27001, and HIPAA standards
• Excellent leadership, interpersonal, verbal and written communication, presentation, and problem solving skills
• Strong cross-functional team program management abilities, including managing multiple assessments concurrently with different stakeholders and timelines
• Track record of taking initiative, having the ability to work independently, and be comfortable thriving in ambiguity

For US-based roles: The base salary range for this role is $165,000 to $180,000 + bonus, equity, and US Benefits. The actual pay may vary based on factors such as location, experience, and skills.

#LI-Remote 

Come help us build for the next stage of growth and scale -- accelerate your career with Instabase!