Senior Compliance Analyst – Continuous Compliance Framework (Hybrid - Seattle)

Job Summary

Required Qualifications

• 4–6 years of regulatory compliance experience with demonstrated ownership of cross-functional compliance initiatives
• Direct experience building and managing Continuous Compliance Framework (CCF) or Common Control Framework programs
• Hands-on experience configuring compliance programs within GRC tools and platforms
• Experience working with stakeholders to define control language, RACI, and testing cadence
• Demonstrated experience developing KPIs and KRIs for compliance programs
• Familiarity with PCI DSS sufficient to support assessments and control testing
• Experience partnering with engineering or security teams to implement automated or AI-assisted control testing
• Proven ability to align compliance operations with strategic business objectives
• Bachelor’s or Master’s degree in Information Technology, Computer Science, Cybersecurity, or related field, or equivalent work experience
• Technical knowledge of multiple regulatory frameworks (CIS, NIST, SOX, HIPAA, CCPA, PCI DSS v4.x) and their control implications
• Experience testing technical controls and documenting evidence to support audits
• Understanding of enterprise compliance architecture and integrated control frameworks
• Familiarity with GRC tool configuration and workflow design
• Knowledge of AI/automation tools applicable to compliance testing and evidence collection
• Strong control framework design and documentation capabilities
• Excellent stakeholder engagement and facilitation skills; ability to drive consensus across technical and non-technical audiences
• Ability to develop and communicate KPIs/KRIs and compliance metrics to leadership
• Strong written and verbal communication skills; self-directed and results-oriented; autonomy and prioritization skills
• Collaborative mindset across risk, governance, and compliance