Audit and Compliance Analyst Entry

About the Opportunity:

As a Audit and Compliance Analyst at Sagent, you will play a critical role in safeguarding our commitment to technical compliance and security. You will be responsible for assisting with all technical compliance audits and certifications (e.g., SOC 2, ISO 27001, PCI-DSS), third-party risk due diligence and client due diligence, while also working on other areas of technical compliance to ensure that our products and services meet regulatory and industry standards.

Your day-to-day at Sagent:

Vendor and Third-Party Risk Management:

• Partner with the vendor management team to evaluate and manage compliance risks associated with third-party vendors and partners.
• Conduct due diligence assessments and ensure vendor compliance with security and regulatory requirements.

Technical Compliance Audits:

• Assist the execution of technical compliance audits, including SOC 2, ISO 27001, PCI, client due diligence audits, and others.
• Collaborate with cross-functional teams to gather evidence, conduct assignments, and ensure compliance with established standards.
• Track audit progress, address findings, and provide timely responses to auditors.

Policy and Procedure Development:

• Assist in the creation and maintenance of compliance policies, procedures, and documentation.
• Stay current with regulatory changes and industry best practices to ensure our policies align with the latest standards.

Compliance Monitoring and Reporting:

• Track compliance with internal policies and external regulations.
• Prepare and present compliance reports to senior management and relevant stakeholders.

Incident Response and Investigation:

• Assist in incident response activities related to security breaches or compliance violations.
• Collaborate with the incident response team to investigate and address incidents promptly.

We would love to hear from you if you have:

• Bachelors Degree in business, risk management, or a related field with 1 - 2 years of experience in a related field. Experience will be considered in lieu of a degree.
• Minimum 1 year experience in technical compliance, audit, or risk management, preferably in a fintech or SaaS environment.
• Strong knowledge of industry standards and regulations such as SOC 2, ISO 27001, PCI DSS, and other regulatory frameworks.
• Familiarity with risk assessment methodologies and compliance frameworks.
• Excellent project management and communication skills.
• Relevant certifications (e.g., CISA, CGRC, CRISC) are a plus.
• Willingness to travel occasionally (up to 20%).