Pebl Logo

Pebl

Compliance & Risk Analyst

Posted Yesterday
Remote
Hiring Remotely in United States
90K-120K Annually
Mid level
Remote
Hiring Remotely in United States
90K-120K Annually
Mid level
Support and execute compliance programs including SOC/ISO audits, privacy readiness (CCPA/GDPR), GRC activities, vendor/third-party assessments, incident response support, and security control monitoring and reporting.
The summary above was generated by AI

Purpose in Every Position

Pebl puts a world of talent at your fingertips. With our AI-powered Global Work Platform™, companies can hire, pay, and manage employees in 185+ countries—removing risk, red tape, and guesswork from global growth. Backed by more than a decade of compliance leadership and local expertise, Pebl helps businesses move fast, stay compliant, and scale with confidence. With Pebl, companies everywhere can hire great talent anywhere.

Where Your Work Moves the Needle.

At Pebl, every team member drives our success. Joining us means more than filling a role—you’re accountable for results and impact. Our values guide how we operate, execute, and collaborate across borders. By putting them into action, you’ll help us scale faster, compete harder, and lead the future of global work.

What Makes You A Great Fit

We are seeking a highly motivated and experienced Compliance & Risk Analyst to join our Security & Compliance team!

Can you assess and interpret data better than those around you? Are you a thought leader? Are you a great team player and love being part of a vibrant, intelligent team? If this sounds like you, come join us at Pebl.

 

How You'll Make An Impact:

The Compliance & Risk Analyst is responsible for supporting and executing the company’s compliance programs. This person works closely with the Security Engineering team, Legal organization and all business units, including Technology, Operations, Sales, and others.

Under the guidance of the Senior Manager of IT and Compliance, this person assists with industry and client audits, internal assessments, and compliance requests, including but not limited to SOC1, SOC2, ISO, and Privacy. The role also involves supporting risk identification and management across the company. Additionally, this person may assist with information security initiatives to protect both Pebl and customer data. While the Compliance & Risk Analyst’s focus is on compliance responsibilities, opportunities may exist to contribute to broader security platforms and initiatives

Key Responsibilities:

Compliance & Risk Support

  • Lead and own the SOC audits including SOC 1 Type II, SOC 2 Type II, ISO 27001 and others with all Trust Service Criteria

  • Partner with Legal teams with privacy readiness efforts aligned with U.S. and international regulations (e.g., CCPA, GDPR), including data breach response preparedness

  • Assist with Governance, Risk, and Compliance (GRC) program activities, including monitoring control effectiveness and remediation tracking

  • Maintain and update policies, standards, and procedures

  • Support client third-party management requests and assessments

  • Assist with vendor risk management and other compliance-related initiatives as directed

Security Program Support

  • Support security initiatives as needed across the Risk & Security team

  • Assist in monitoring, reporting, and documentation of security systems and controls

  • Monitor remediation activities related to penetration testing and application security assessments

Operational Responsibilities

  • Participate in incident response for privacy and data subject requests

  • Prepare compliance and risk reports for management and clients

  • Assist in handling audit inquiries and evidence collection

  • Support Business Continuity and Disaster Recovery (BCDR) testing

  • Perform additional duties as assigned

Let's Connect If You Have:

  • Bachelor’s degree in Compliance, Audit, Cybersecurity, Information Security, Information Technology, Computer Science, or a related field, or equivalent professional experience

  • Minimum of 4 years of experience in compliance, audit, security, or risk management

  • Understanding of privacy regulations (e.g., CCPA, GDPR)

  • Competency in supporting audit and compliance processes

  • Strong organizational and time-management skills

  • Ability to create and maintain policies, procedures, and documentation

Preferred Skills And Experience

  • Hands-on experience with SOC 2, ISO 27001, TX-RAMP, or other audit/compliance frameworks

  • Exposure to risk and security frameworks such as NIST CSF, NIST RMF, or ISO 27001

  • Experience supporting third-party assessments or client compliance requests

  • Familiarity with business continuity or incident response planning and testing

  • Experience collaborating across cross-functional teams in a technical environment

Key Competencies and Attributes

  • Detail-oriented and proactive

  • Strong analytical and problem-solving abilities

  • Excellent written and verbal communication skills

  • Professional judgment and discretion with sensitive information

  • Collaborative mindset and willingness to learn

  • Ability to manage multiple priorities in a fast-paced environment

Our Commitment to You

At Pebl, we’re committed to supporting our team with comprehensive rewards and benefits designed to meet diverse needs across roles and locations. Our core offerings include:

  • Flexible Time Off – Take the time you need to recharge.

  • Parental Leave – Support for growing families.

  • Health and Dental Insurance – Where applicable, to cover you and your loved ones.

  • Retirement Savings + Employee Incentive Plan – Plan for the future while sharing our success.

Please visit our career page for more information.

Pebl is an Equal Opportunity Employer.

We power global teams and believe diverse perspectives drive innovation and impact. Employment decisions at Pebl are based on qualifications, merit, and business needs. We do not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, veteran status, or any other status protected by applicable law. We’re committed to fostering an inclusive culture where every teammate can thrive and do the best work of their career—anywhere in the world.

Similar Jobs

3 Days Ago
Remote
United States
160K-200K Annually
Senior level
160K-200K Annually
Senior level
Software • Defense
Manage and maintain RMF authorizations and audit evidence (SSPs, SARs, POA&Ms, STIGs), embed compliance into engineering and CI/CD, coordinate internal assessments and external audits (FedRAMP High, CMMC 2.0, SOC 2), run risk and vendor reviews, and automate continuous control testing across federal and commercial environments.
Top Skills: Cmmc 2.0Dod Cloud Computing SrgEmassFedrampGrc PlatformsIso 27001Nist RmfNist Sp 800-171Poa&MSarSoc 2SspStigs
Yesterday
Remote
Georgia, USA
Mid level
Mid level
Software
Own the vendor and third‑party risk lifecycle and support the GRC programme across ISMS, privacy, and compliance. Duties include vendor due diligence, security questionnaires, risk ratings, contractual safeguards, supplier assurance, ISO-aligned risk assessments, RoPA/DPIA support, audit readiness, and governance reporting.
Top Skills: CaiqCiso AssistantDoraGdprIso 31000Iso/Iec 27001:2022OnetrustPci-DssProcessunitySigSoc 2 Type IiWhistic
12 Days Ago
Remote
USA
198K-233K Annually
Senior level
198K-233K Annually
Senior level
HR Tech • Software
Lead and mature Calendly’s compliance and risk program (SOC 2, ISO 27001). Design and operationalize controls, run audits, perform risk assessments and UARs, manage remediation, optimize compliance automation, produce risk reporting and dashboards, and partner cross-functionally to embed compliance into product and business processes.
Top Skills: AIDrataFedrampGdprGrc PlatformsHipaaIso 27001NistPci DssSoc 2Tugboat LogicVanta

What you need to know about the NYC Tech Scene

As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.

Key Facts About NYC Tech

  • Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
  • Key Industries: Artificial intelligence, Fintech
  • Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
  • Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account