SOC Analyst

We are looking for an experienced Security and Compliance Analyst to help us design, validate, and automate compliance programs for our customers. In this role, you will work closely with our product and customer teams to map real-world frameworks into DSALTA, define evidence requirements, and guide customers to become and stay audit ready.

• Lead and support multiple compliance projects for customers, including SOC 2, ISO 27001, GDPR and other modern frameworks.
• Work directly with external auditors and customers to prepare for audits, respond to requests, and close findings.
• Review and define controls, policies, and procedures, and map them into DSALTA’s control library.
• Design and validate evidence collection methods, including automated tests, integrations, and manual evidence workflows.
• Own the end to end evidence lifecycle: define what good evidence looks like, review submissions, and provide clear feedback.
• Analyze gaps in customers’ security and compliance posture and propose practical remediation plans with clear priorities.
• Collaborate with product and engineering to improve our evidence engine, tests, integrations and templates based on real customer use cases.
• Create clear documentation, playbooks and best practices that can be reused across many customers and frameworks.

• 4+ years of hands-on experience in security and compliance, ideally in a SOC analyst, Compliance Analyst, or GRC role.
• Strong experience running or supporting several SOC 2 and ISO 27001 projects from readiness to audit.
• Direct experience working with auditors: preparing evidence, answering questions, managing requests, and closing gaps.
• Experience using modern GRC or compliance tools such as Vanta, Drata, Secureframe, Hyperproof or similar platforms.
• Solid understanding of GDPR and other privacy or security frameworks, and how they translate into controls and evidence.
• Proven experience working with multiple customers or internal stakeholders and guiding them through compliance projects.
• Strong experience with evidence systems and control matrices: screenshots, logs, system reports, tickets and change records.
• Comfortable working with technical tools and SaaS platforms such as cloud providers, ticketing systems and security tools.
• Excellent written and verbal communication skills, with the ability to explain complex compliance topics in simple, practical language.

• Help build a core revenue and compliance engine from the ground up.
• Work on cutting edge AI and automation that changes how companies do compliance and vendor risk management.
• Collaborate with a global, product focused team of builders who move fast and ship.
• Shape how our platform supports frameworks like SOC 2, ISO 27001, GDPR and more for hundreds of startups and enterprises.
• Competitive compensation with real upside as we scale.