Jobs · Legal

Security Compliance Analyst

Blackpoint Cyber · United States · 6 days ago
RemoteRemoteLegal$190/hrFull-time

About the role

Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection, and remediation technology. Founded by former National Security Agency (NSA) cyber operations experts, Blackpoint Cyber brings national security-grade technology solutions to commercial customers worldwide. The company is in hyper-growth mode, having recently secured a $190 million series C funding round.

Responsibilities

  • Maintain and continuously improve the company's compliance initiatives under the guidance of the Director of Internal Security Compliance.
  • Play a key role in building organizational resiliency by refining security policies, conducting internal audits, and driving the resolution of compliance gaps.
  • Support the maintenance of a comprehensive security compliance program aligned with laws, regulations, and industry best practices.
  • Conduct framework and control mapping, refine policies, standards, and procedures, and continuously monitor control compliance.
  • Maintain and optimize key programs like Third Party Risk Management and Security Awareness Training.
  • Apply expertise in regulatory frameworks such as GDPR, HIPAA, PCI DSS, NIST 800-171/CMMC, ISO 27001, SOC2, and FedRAMP controls, as well as U.S. state privacy regulations.
  • Support internal audits, working with stakeholders to remediate findings.
  • Support external audits (e.g., SOC 2) through preparation, planning, monitoring, and remediation coordination, documentation, and follow-up tracking.
  • Bring a structured, methodical approach to assisting with cross-functional project implementation.
  • Stay current on emerging threats, regulations, and security best practices to strengthen the compliance posture.

Requirements

  • Bachelor’s degree (or equivalent experience) in IT, Information Security, Computer Science, Information Systems Management, Privacy, Law, Compliance, or related field.
  • Minimum 5 years of experience in privacy, security, or security compliance roles, including experience with internal audit.
  • Strong verbal and written communication, organizational, and documentation skills.
  • Experience working with Atlassian Suite tools for collaboration and task management.
  • Deep knowledge of regulatory and compliance frameworks, including SOC2, ISO 27001, GDPR, NIS2, CMMC, FedRAMP, HIPAA, PCI DSS.
  • Strong analytical and problem-solving abilities with strong attention to detail.
  • Proven ability to work with multiple stakeholder groups, coordinating as needed, and supporting the integration of compliance into business processes.
  • Hands-on experience with framework and control mapping, compliance automation tools (One Trust Certification Automation, DRATA, and others), and third-party risk management (TPRM) tools.
  • Solid understanding of compliance risk, including implementing compensating controls and translating risk assessments for technical and non-technical audiences.
  • Experience working in remote or distributed environments.

Qualifications

  • Relevant professional certifications are preferred, such as CISA, CIPP/US, CIPP/E, CIPM, or CIPT.

Skills

  • Expertise in regulatory frameworks such as GDPR, HIPAA, PCI DSS, NIST 800-171/CMMC, ISO 27001, SOC2, and FedRAMP controls, as well as U.S. state privacy regulations.

Benefits

  • Compensation Base Salary: $115K – $125K
  • Offers Equity
  • Offers Bonus

Pay

The above sets forth the annual base salary range in USD for this role exclusive of any discretionary bonus that may be awarded. Actual compensation will be based on an assessment of factors including the successful candidate’s location, experience, skill, and other job-related factors.

Schedule

Not specified

Benefits

  • Health, Vision, Dental, and Life Insurance plans
  • A robust 401k plan
  • Discretionary Time Off
  • Other minor perks

Company Culture

Blackpoint Cyber welcomes and encourages applications from qualified individuals of all races, colors, religions, sex, sexual orientation, gender identity or expression, national origin, age, marital status, or any other legally protected status. We are committed to equality of opportunity in all aspects of employment.

Similar jobs

IT Security Compliance Analyst

Five Rivers IT Inc.Fair Lawn, NJ· 3 wk ago
Information Technology$125k–$175k/yrapply on fiveriversitinc.applytojob.com