drata - Senior Compliance Advisor
Upload My Resume
Drop here or click to browse · Tap to choose · PDF, DOCX, DOC, RTF, TXT
Requirements
• Must have 4 - 6 years of experience in performing audits and assessments for compliance programs based on SOC 2 and ISO 27001/27002 • Strong background and understanding of GRC (Governance, Risk, and Compliance) programs, processes, functions, and operational teams, and helping organizations design, build, and operate their risk, security, and compliance programs • Familiarity with GRC tools and/or cybersecurity technologies; hands-on experience with a GRC automation platform is a plus. • While not required, previous experience at consulting, audit, and advisory firms or at GRC/cybersecurity technology companies, is highly preferred. • Proven self-starter able to identify priorities, take ownership of work, and learn and advise on new compliance frameworks quickly. • An ability to develop and cultivate positive relationships with customers - make their day by providing the best possible guidance and customer experience • Desire to work at a rapidly growing startup with a team-player mindset, building and creating something from the ground up. • A proactive approach to managing your workload and day and ability to prioritize many different tasks and levels of responsibility • Constant ability to iterate and improve upon existing processes - challenge the status quo and improve upon the current state • A strong ability to work within a high-speed and high-volume environment • Nice to have: Light technical fluency to accelerate evidence automation and customer enablement — comfort reading and interpreting API responses, working familiarity with at least one major cloud provider (AWS, GCP, or Azure) and its core security/IAM services, and/or basic scripting (Python, PowerShell, or SQL) to streamline repetitive evidence-collection tasks. • Nice to have: One or more industry certifications such as CISA, CISSP, CIPP/E or CIPP/US, CRISC, or ISO 27001 Lead Auditor / Lead Implementer. • How we support you: • At Drata, our people are our strongest advantage—and we prove it with support that exceeds industry standards. Our total rewards package is designed to power your well-being, accelerate your growth, and keep your work-life balance thriving. • Explore how we invest in your Life at Drata https://drata.com/about/life-at-drata?utm_source=chatgpt.com.
Responsibilities
• Advise customers on information security policies, control evidence, and overall audit readiness as they prepare for audits and assessments against SOC 2, ISO 27001/27002, HIPAA, PCI, NIST 800-171, CMMC, FedRAMP, GDPR, CCPA, and related frameworks. • Lead end-to-end control mapping and cross-framework crosswalk analysis, aligning customer custom controls and audit evidence request lists (IRLs) to the Drata Control Framework (DCF). • Serve as the primary compliance expert in customer-facing meetings, via email and executable work for customers, and to members of our Customer Success teams. • Lead the development and present on GRC industry best-practices and on common compliance questions received from customers for both external and internal audiences. • Lead ongoing internal learning and success of our team by sharing knowledge through mentorship, research, and internal presentations. • Partner with Customer Success and Account Managers in providing current customers with additional compliance advisory services as needed. • Engage with the Sales team, as needed, with responding to prospective customer questions. • Host customer-facing webinars to answer questions on audit and GRC best practices • Review marketing articles and blog posts for accuracy as needed.
Benefits
• The best way to understand the Driver’s Mindset is to see it in action. We’re an award-winning, mission-driven team of 600+ people worldwide, united by a culture that values trust, speed, and continuous growth. • See the Speed: https://www.youtube.com/watch?v=QidTdkGwKMY Watch our CEO, Adam Markowitz, discuss the hyper-growth journey, from $0 to $100M ARR in just four years • Hear the Voice of the Team https://drata.com/about/life-at-drata: Explore our "Life at Drata" page for employee testimonials on our collaborative and the growth opportunities available. • Experience the Impact https://www.greatplacetowork.com/certified-company/7044563: See why we are consistently recognized on Fortune's Best Workplaces lists. • Connect with Us on Socials: LinkedIn https://www.linkedin.com/company/drata/posts/?feedView=all - follow us for company updates, employee stories, and career news.
No credit card. Takes 10 seconds.