Compliance Analyst II (UK)

AuditBoard, Inc.

Job Overview

Location

United Kingdom

Job Type

Full-time

Full Job Description

📋 Description

• As a Compliance Analyst II at AuditBoard, you will play a critical role in strengthening the company’s security compliance program by supporting strategic initiatives and ensuring day-to-day operational excellence in a fast-growing SaaS environment. Your work will directly contribute to maintaining AuditBoard’s industry-leading posture in audit, risk, ESG, and InfoSec compliance, helping protect sensitive data and uphold trust with Fortune 500 customers.
• You will collaborate across security, IT, engineering, legal, and other cross-functional teams to design, implement, and validate compliance controls, translating complex regulatory requirements into practical, actionable procedures that support business objectives while mitigating risk.
• Your day-to-day responsibilities will include participating in the maintenance and evolution of the compliance program framework, including designing and developing policies, standards, and procedures aligned with ISO 27001/27002, NIST CSF, NIST 800-53, SOC 1/2, FedRAMP, and other relevant frameworks.
• You will facilitate and perform second-line-of-defense control testing and validation, ensuring controls are operating effectively and evidence is properly collected and documented for internal and external audits.
• You will support compliance operations by managing User Access Reviews, Due Diligence Questionnaires, and Issues Management processes, ensuring timely resolution and tracking of compliance-related items.
• You will consult with cross-functional and security teams to assess data privacy and security risks, recommend mitigation strategies, and assist in responding to customer and vendor security questionnaires.
• You will contribute to the continuous improvement of AuditBoard’s overall security compliance posture by identifying gaps, recommending enhancements, and supporting audit readiness activities.
• You will interface with security and legal teams on compliance matters, participate in security compliance assessments, and help develop and deliver training programs on security awareness, data handling, protection, and privacy for global employees.
• You will work globally to translate compliance requirements into common controls and practices, fostering consistency across regions and business units while respecting local regulatory nuances.
• You will have the opportunity to grow your expertise in GRC, security frameworks, and compliance automation, while developing leadership and influence skills through cross-functional collaboration and project ownership in a high-impact, innovative culture.

🎯 Requirements

• 3+ years of experience as a security compliance professional with in-depth knowledge of control objectives, procedures, gap assessments, and evidence collection for ISO 27001/27002, NIST CSF, NIST 800-53, CMMC/NIST 800-171, SOC 1/2, FedRAMP, and related industry standards.
• Experience working in a B2B SaaS organization, understanding the unique compliance challenges and dynamics of cloud-based technology environments.
• Proficiency with compliance automation tools and practices, including working knowledge of SQL for data querying and analysis to support risk assessments and control monitoring.
• Bachelor’s degree in a relevant field such as Information Security, Computer Science, Business, or a related discipline.
• Ability to quickly learn new technologies and data flows to assess security risks and develop appropriate risk mitigation strategies.
• Strong ability to interpret laws, regulations, and legal guidance and translate them into operational policies, procedures, and practical business unit guidance.
• Skill in collecting, describing, and presenting technical information clearly to support decision-making by technical and non-technical stakeholders.
• Experience collaborating across global, cross-functional teams and managing multiple concurrent projects with initiative and professional judgment.
• Background in developing and communicating security and enterprise-level controls (ELC) to business stakeholders in an accessible, actionable manner.
• Excellent verbal and written communication skills, essential for training, reporting, and influencing stakeholders at all levels.
• Relevant certifications such as CISSP, CISM, or CISA are highly preferred and demonstrate commitment to the profession.

🏖️ Benefits

• Launch your career at one of the fastest-growing SaaS companies in North America, recognized as a Deloitte Technology Fast 500 winner for seven consecutive years.
• Live Your Best Life (LYBL) stipend: $200 per month to spend on anything that enhances your well-being, from fitness and hobbies to learning and home office improvements.
• Comprehensive employee health coverage available across all locations, ensuring access to quality medical, dental, and vision care.
• Retirement savings plan with company match: 401(k) match in the US or pension plan with match in the UK to support long-term financial security.
• Competitive compensation package including base salary and performance-based bonus program tied to individual and company goals.
• Flexible vacation policy: 25 days of annual leave in the UK, plus additional time off for birthdays and volunteering opportunities.
• Access to employee resource groups and regular opportunities for team and company-wide gatherings to foster connection, inclusion, and culture.

Skills & Technologies

Remote

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

AuditBoard, Inc.

Visit Website

About AuditBoard, Inc.

AuditBoard Inc. provides cloud-based risk management and compliance software for internal audit, SOX compliance, enterprise risk management, IT security, and ESG programs. The platform unifies control testing, issue tracking, policy management, and reporting in one workspace used by Fortune 500 companies and global accounting firms to automate workflows, evidence collection, and real-time dashboards, replacing spreadsheets and legacy GRC tools.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.