InfoSec Compliance Analyst (Remote - US)

This position is posted by Jobgether on behalf of Possible. We are currently looking for an InfoSec Compliance Analyst in the United States.

This role offers an exciting opportunity to lead and manage information security compliance initiatives within a mission-driven financial services environment. As an InfoSec Compliance Analyst, you will play a critical part in overseeing audits, regulatory compliance, and risk management efforts that protect sensitive data and ensure adherence to industry standards. You will collaborate closely with cross-functional teams and external partners to maintain robust security controls, facilitate compliance projects, and support continuous improvement. The position blends project coordination with hands-on compliance expertise, perfect for a proactive professional eager to make an impact in a fast-growing, hybrid workplace.

Accountabilities:

• Administer, document, and audit information security policies, standards, and controls to ensure regulatory compliance.
• Coordinate vulnerability management, user access reviews, and security incident response exercises.
• Lead and manage PCI audits and related internal control processes, including access control reviews for SOC and internal policies.
• Monitor and interpret evolving IT regulatory requirements (e.g., PCI DSS, SOC 2), translating them into actionable policies and procedures.
• Serve as the primary contact for audits, examinations, and control testing in IT, InfoSec, and cybersecurity domains.
• Maintain comprehensive documentation for risk assessments, compliance certifications, vendor due diligence, and regulatory submissions.
• Manage compliance and security-related projects, including developing plans, tracking remediation progress, and reporting outcomes.

• Proven experience in compliance, IT, information security, cybersecurity, and audits, preferably in financial services or fintech.
• Familiarity with key regulatory standards such as PCI DSS, ISO 27001, SOC 1 & SOC 2.
• Strong understanding of information security concepts including access control, encryption, and incident response.
• Experience with FFIEC IT, InfoSec, and Business Continuity frameworks.
• Excellent documentation, communication, and organizational skills.
• Ability to work independently while collaborating effectively across teams and managing multiple priorities.

Preferred Qualifications:

• Bachelor’s degree or equivalent in Information Security, Business Administration, Risk Management, or related fields.
• Certifications such as CISA, CISM, or CISSP (Associate or full).
• Knowledge of security technologies including SIEM, endpoint protection, and encryption.
• Experience with AWS, OKTA, and Kandji environments.

• Competitive salary range ($127,700 to $134,800) with significant stock options
• Comprehensive health, dental, and vision insurance
• Bonus plan and commuter benefits
• Hybrid work environment with three days onsite in a centrally located downtown office
• Access to an excellent office space with complimentary drinks and food options

Jobgether is a Talent Matching Platform that partners with companies worldwide to efficiently connect top talent with the right opportunities through AI-driven job matching.

When you apply, your profile goes through our AI-powered screening process designed to identify top talent efficiently and fairly.
🔍 Our AI evaluates your CV and LinkedIn profile thoroughly, analyzing your skills, experience, and achievements.
📊 It compares your profile to the job’s core requirements and past success factors to determine your match score.
🎯 Based on this analysis, we automatically shortlist the 3 candidates with the highest match to the role.
🧠 When necessary, our human team may perform an additional manual review to ensure no strong profile is missed.

The process is transparent, skills-based, and free of bias — focusing solely on your fit for the role.
Once the shortlist is completed, we share it directly with the company that owns the job opening. The final decision and next steps (such as interviews or additional assessments) are then made by their internal hiring team.
Thank you for your interest!

#LI-CL1