Customers trust the Alation Data Intelligence Platform for self-service analytics, cloud transformation, data governance, and AI-ready data, fostering data-driven innovation at scale. With more than $340M in funding – valued at over $1.7 billion and nearly 600 customers, including 40% of the Fortune 100 — Alation helps organizations realize value from data and AI initiatives.
Alation has been recognized in 2024 as one of Inc. Magazine's Best Workplaces for the fifth time, a testament to our commitment to creating an inclusive, innovative, and collaborative environment. Collaboration is at the forefront of everything we do. We strive to bring diverse perspectives together and empower each team member to contribute their unique strengths to live out our values each day. These are: Move the Ball, Build for the Long Term, Listen Like You’re Wrong, and Measure Through Customer Impact. Joining Alation means being part of a fast-paced, high-growth company where every voice matters, and where we’re shaping the future of data intelligence with AI-ready data. Join us on our journey to build a world where data culture thrives and curiosity is celebrated each day!
Job Description:
Alation is seeking a highly skilled and experienced Senior Compliance Analyst to join our team. The ideal candidate will have a strong background in cloud security and be well-versed in multiple compliance frameworks. This role requires outstanding written and spoken communication skills to effectively manage security and awareness training, assist stakeholders with the KnowBe4 training platform, and ensure our compliance programs are robust and effective.
What You’ll Do:
Audit and Compliance:
Develop, implement, and maintain compliance programs for various frameworks including ISO 27001, ISO 27701, HIPAA/HITECH, SOC 2 Type II, FedRAMP, and PCI-DSS.
Conduct regular audits and assessments to ensure compliance with relevant standards and regulations.
Monitor changes in compliance requirements and update company policies and procedures accordingly.
Prepare and present compliance reports to senior management and stakeholders.
Risk Management
Act as the primary risk treatment specialist by participating in the annual Security Risk Assessment and helping stakeholders across the organization treat risks in a timely fashion.
Cloud Security:
Oversee cloud security initiatives to ensure compliance with industry standards and best practices.
Collaborate with the IT and security teams to implement and maintain cloud security controls.
Conduct risk assessments and vulnerability scans on cloud infrastructure to identify and mitigate potential threats.
Training and Awareness:
Manage the company’s security and awareness training programs.
Utilize the KnowBe4 platform to deliver training and awareness programs to employees.
Create engaging training materials and conduct training sessions to enhance security awareness across the organization.
Monitor and report on the effectiveness of security training programs and make recommendations for improvements.
Audits and Assessments:
Conduct audits and assessments to identify compliance gaps and evaluate the effectiveness of controls.
Collaborate with relevant teams to implement corrective actions and track progress.
Provide compliance training and guidance to employees, promoting a culture of compliance.
Relationship Management:
Build and nurture relationships with stakeholders across teams to foster collaboration and trust.
Partner with internal teams to ensure compliance requirements are understood and incorporated into processes and systems.
Manage external partnerships for internal and external audit activities.
Technology and Tools:
Leverage technology, including Governance, Risk, and Compliance (GRC) tools, to streamline audit processes and enhance efficiency.
Train internal stakeholders on the use of GRC tools and other necessary technologies.
What You Need:
Bachelor's degree in a relevant field, such as computer science, information security, or risk management. A master's degree is a plus.
5 years of relevant work experience.
Fine to work in US Shift (Remote work)
In-depth knowledge of cloud security principles, technologies, and best practices (e.g., AWS, Azure, Google Cloud) and physical security protocols.
Familiarity with security frameworks, standards, and regulatory requirements (e.g., ISO 27001, NIST, GDPR).
Strong experience in conducting audits, assessments, and implementing compliance programs.
Experience managing a security and awareness training program and working with LMS platform
Excellent understanding of compliance frameworks, controls, and risk management practices.
Demonstrated ability to build relationships and collaborate effectively with stakeholders.
Proficiency in using GRC tools or similar technologies for audit and compliance management.
Strong analytical and problem-solving skills to identify and address compliance gaps.
Excellent communication and presentation skills to convey complex compliance concepts to diverse audiences.
Able to pivot and thrive in a rapidly changing start-up environment, managing multiple tasks and prioritizing effectively based on feedback
#LI-SR1#LI-RemoteAlation, Inc. is an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regards to that individual’s race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender identity, age, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law. The Company will strive to provide reasonable accommodations to permit qualified applicants who have a need for an accommodation to participate in the hiring process (e.g., accommodations for a job interview) if so requested.
This company participates in E-Verify. Click on any of the links below to view or print the full poster. E-Verify and Right to Work.
