[Remote] Security Compliance Analyst
Note: The job is a remote job and is open to candidates in USA. Blackpoint Cyber is the leading provider of world-class cybersecurity threat hunting, detection and remediation technology. They are seeking a motivated Security Compliance Analyst to help lead their evolving internal security compliance program, refine security policies, conduct internal audits, and ensure compliance with various security and privacy frameworks.ResponsibilitiesSupport the maintenance of a comprehensive security compliance program aligned with laws, regulations, and industry best practices. This includes framework and control mapping, refining policies, standards, and procedures, and continuous monitoring of control complianceMaintain and optimize key programs like Third Party Risk Management and Security Awareness TrainingApply expertise in GDPR, HIPAA, PCI DSS, NIST 800-171/CMMC, ISO 27001, SOC2, and FedRAMP controls as well as U.S. state privacy regulations to ensure practices remain compliant and up to dateSupport internal audits, partnering with stakeholders to remediate findingsSupport external audits (e.g., SOC 2) through preparation and planning, monitoring and remediation coordination, documentation and follow-up trackingBring a structured, methodical approach to assisting with cross-functional project implementationStay current on emerging threats, regulations, and security best practices to strengthen compliance postureSkillsBachelor's degree (or equivalent experience) in IT, Information Security, Computer Science, Information Systems Management, Privacy, Law, Compliance, or related fieldMinimum 5 years of experience in privacy, security, or security compliance roles, including experience with internal auditStrong verbal and written communication, organizational, and documentation skills. Experience working with Atlassian Suite tools for collaboration and task managementDeep knowledge of regulatory and compliance frameworks, including SOC2, ISO 27001, GDPR, NIS2, CMMC, FedRAMP, HIPAA, PCI DSSStrong analytical and problem-solving abilities with strong attention to detailProven ability to work with multiple stakeholder groups, coordinating as needed, and supporting the integration of compliance into business processesHands-on experience with framework and control mapping, compliance automation tools (One Trust Certification Automation, DRATA, and others), and third-party risk management (TPRM) toolsSolid understanding of compliance risk, including implementing compensating controls and translating risk assessments for technical and non-technical audiencesExperience working in remote or distributed environmentsRelevant professional certifications are preferred, such as CISA, CIPP/US, CIPP/E, CIPM, or CIPTBenefitsHealth, Vision, Dental, and Life Insurance plansRobust 401k planDiscretionary Time OffOther minor perksCompany OverviewBlackpoint Cyber is a provider of cybersecurity threat hunting, detection, and response technology. It was founded in 2014, and is headquartered in Denver, Colorado, USA, with a workforce of 51-200 employees. Its website is https://www.blackpointcyber.com.Company H1B SponsorshipBlackpoint Cyber has a track record of offering H1B sponsorships, with 1 in 2025, 2 in 2024. Please note that this does not guarantee sponsorship for this specific role.