Rockefeller Philanthropy Advisors is hiring a Senior Security Compliance Analyst to own and lead our enterprise-level security compliance posture. You will be accountable for key security certifications, managing audit cycles, and strengthening our practices to maintain credibility with government and enterprise clients.
What You'll Do
- Lead and manage compliance initiatives including FedRAMP, DoD IL2-IL4, SOC 2, PCI-DSS, and ISO 27001.
- Serve as the internal subject matter expert across all relevant security frameworks and regulations.
- Conduct detailed technical control assessments, policy reviews, and risk-based walkthroughs.
- Provide executive-level reporting on residual risk, vulnerabilities, and overall compliance posture.
- Support security automation and continuous monitoring projects to enhance efficiency.
- Respond to customer security assessments, vendor questionnaires, and RFPs with technical expertise.
- Guide teams through audit processes and ensure successful ongoing certification maintenance.
- Champion the development of policies, training programs, and implementation of best practices.
- Act as the primary point of contact for government security compliance matters.
What We're Looking For
- Minimum of 5 years of experience managing security compliance audits, especially FedRAMP, DoD IL2-5, SOC 2, ISO 27001, and PCI.
- Deep understanding of NIST 800-53, DoD SRG, and associated continuous monitoring processes.
- Proven ability to produce clear and actionable risk assessments and remediation strategies.
- U.S. citizenship is required due to the nature of compliance regulations.
- Must hold either a CISSP or Security+ certification in good standing.
Nice to Have
- Familiarity with privacy and security frameworks like GDPR, CCPA, CPRA, and EU Cyber Resilience Act is a plus.
- Additional certifications such as CISM, CISA, CRISC, SANS GIAC, or ISO 27001 Lead Auditor are a strong plus.
Team & Environment
You will work cross-functionally with teams across Engineering, Product, Sales, and HR.
Benefits & Compensation
- Compensation range: $115,000 - $130,000
- Health, dental, and vision insurance
- Mental health support via SpringHealth
- 401(k) with 4% company match
- Unlimited PTO (minimum 2 weeks use required)
- 9 paid company holidays
- Up to 16 weeks of paid parental leave
- Annual budget for professional development
- Charitable donation matching
- Company-provided Mac laptop
Work Mode
This is a fully remote position for candidates located in the United States. We cultivate a vibrant and collaborative remote culture with a focus on work-life balance.
