Compliance Advisor (Remote)

As a Compliance Advisor at Drata, you are a customer-facing information security and compliance expert for the world’s most advanced security and compliance automation platform. Compliance Advisors execute within the Customer Success function at Drata and work closely with all teams to drive fast and smooth audit readiness programs, create and deliver best practices for meeting requirements for control and privacy frameworks, and advocate on behalf of customers’ needs for a rapidly growing platform. You’ll build trust and empathy with Drata’s customers as you advise them toward a continuous and self-sufficient security and compliance posture.

This role requires PST / CST working hours.

What you’ll do: 

• Advise customers with building out information security policies, uploading evidence for controls and overall audit readiness as they prepare for SOC2, ISO 27001, HIPAA, PCI, HITRUST, NIST 800-53, NIST 800-171, CMMC, FedRAMP, GDPR, CCPA, etc..
• Provide compliance advisory when covering correspondence via live chat, phone calls, and emails.
• Contribute to creation of documentation for common compliance questions received from customers for both external and internal audiences.
• Provide compliance advisory support to cross-functional partners such as assisting in creating external training contents, reviewing marketing articles and responding to prospect customer questions.
• Research and stay updated on major cloud providers’ services (AWS, Azure, GCP), emerging technologies in the cybersecurity space, information security frameworks/standards and privacy standards.
• Provide feedback to the the Product team in their development of a common control mapping across multiple information security and privacy frameworks ( ex: SOC2, ISO 27001, HIPAA, PCI, HITRUST, NIST 800-53, NIST 800-171, CMMC, FedRAMP, GDPR, CCPA, etc. )
• Assisting with internal GRC initiatives, such as internal audits and other compliance initiatives.
• Contribute to the ongoing internal learning and success of our team by sharing knowledge through mentorship and collaboration.

What you’ll bring:

• 2-3 years experience in helping organizations build out their security and compliance programs based on control and/or privacy frameworks, such as SOC2, ISO 27001/270002, HIPAA, PCI, HITRUST NIST 800-53, NIST 800-171, CMMC, FedRAMP, GDPR, CCPA, etc.
• 2+years experience in performing audits against one or more of the previous listed frameworks or standards.
• Familiarity with the security services offered by cloud services, such as AWS, GCP, Azure, BitBucket, GitHub, etc..
• An understanding of the Shared Responsibility Model and how this model works with SaaS companies.
• Exceptional verbal and written communication skills, and comfort with leading (potentially solo) presentations, training, and advisory sessions with CISOs, CTOs and business users.
• A demonstrated track record of constant learning and self-development.
• Service-minded and attentive to giving customers the best possible support and experience
•  with our products.
• Self-motivated to research and learn information security and privacy frameworks/standards and emerging technologies.

Benefits:

• Healthcare: 90-100% paid premiums for medical, dental, and vision plans for employee and dependents + on demand health care concierge
• HSA, FSA, & DCFSA: Pre-tax savings plans for healthcare and dependent care, with up to a $600 annual employer contribution to the HSA plan (if enrolled in HSA medical plan)
• 100% paid short and long term disability plus life + AD&D benefits
• Learning & Development: $500 annually towards professional development opportunities + $250 annually towards personal development opportunities
• Flexible Time Off: Flexible vacation policy for strong, fully charged batteries
• 16 Weeks Paid Parental Leave: An inclusive policy to ensure you have time with your newborn, newly adopted, or foster child
• Work Remotely: Flexible hours and work from home + $1,000 annually to cover necessary business related items for your home office
• 401K: Reach your financial goals while reducing your taxes

This role will receive a competitive base salary, benefits, and equity. The applicable salary range for each US-based role is based on where the employee works and is aligned to one of 3 tiers based on the cost of labor for that geographic area. The expected salary ranges for this role are set forth below. 

Tier 1: $99,450 - $122,850

Tier 2: $89,505 - $110,565

Tier 3: $79,560 - $98,280

You can view which tier applies to where you plan to work here. A variety of factors are considered when determining someone’s leveling and compensation – including a candidate’s professional background and experience. These ranges may be modified in the future and final offer amounts may vary from the amounts listed above.

Please continue to apply if you are unsure that you fit into our compensation structure.