Responsibilities: Design and build robust, scalable automation frameworks from scratch using industry-standard tools and best practices. Design and develop automated test scripts using tools such as Selenium, Appium, RestAssured , or similar. Integrate automated test suites within Azure DevOps CI/CD pipelines to ensure robust quality checks at every stage of the deployment lifecycle. Leverage AI tools such as GitHub Copilot or similar tool to accelerate test script development and reduce manual coding effort. Implement efficient and maintainable automation frameworks to streamline the testing process. Execute automated test suites to validate software functionality, performance, and reliability. Design and execute automated and manual API test cases to validate API functionality , performance, and security. Write and execute SQL queries to validate data integrity and perform database-level testing. Collaborate with the development team to understand project requirements and identify appropriate test scenarios. Collaborate with QA team members to develop test plans and strategies aligned with project goals. Participate actively in Agile ceremonies , including sprint planning, daily stand-ups, and sprint reviews. Track and manage software defects using tools like Jira or Bugzilla ; work closely with developers to resolve them promptly. Analyse test results and report issues with detailed logs and reproducible steps. Conduct cross-browser testing across Chrome, Firefox, Safari, and Edge to ensure consistent UI/UX. Perform manual testing as necessary to support automated test coverage. Create and execute manual test cases for exploratory, functional, and regression testing. Plan, design, and execute load and performance tests using tools such as JMeter, Gatling, or LoadRunner. Analyse load test results and collaborate with development teams to optimize application performance. Stay current with security trends and contribute to enhancing security testing processes and coverage. Identify areas for process improvement and contribute to continuous evolution of QA best practices. Qualifications: Bachelor's degree in Computer Science, Engineering, or a related field. 2-4 years of experience in software quality assurance, with a focus on automation testing . Proficiency in programming languages such as C#.net, Java, Python, or JavaScript. Hands-on experience with automation tools/frameworks such as Selenium WebDriver, TestNG, JUnit, or similar. Experience with continuous integration and continuous deployment (CI/CD) pipelines. Strong understanding of software testing methodologies , test design techniques , and quality assurance principles . Experience with version control systems such as Git. Understanding of security testing methodologies, tools, and techniques. Excellent problem-solving skills and attention to detail. Strong communication and collaboration skills, with the ability to work effectively in a team environment. Show more Show less
Responsibilities: Design and build robust, scalable automation frameworks from scratch using industry-standard tools and best practices. Design and develop automated test scripts using tools such as Selenium, Appium, RestAssured , or similar. Integrate automated test suites within Azure DevOps CI/CD pipelines to ensure robust quality checks at every stage of the deployment lifecycle. Leverage AI tools such as GitHub Copilot or similar tool to accelerate test script development and reduce manual coding effort. Implement efficient and maintainable automation frameworks to streamline the testing process. Execute automated test suites to validate software functionality, performance, and reliability. Design and execute automated and manual API test cases to validate API functionality , performance, and security. Write and execute SQL queries to validate data integrity and perform database-level testing. Collaborate with the development team to understand project requirements and identify appropriate test scenarios. Collaborate with QA team members to develop test plans and strategies aligned with project goals. Participate actively in Agile ceremonies , including sprint planning, daily stand-ups, and sprint reviews. Track and manage software defects using tools like Jira or Bugzilla ; work closely with developers to resolve them promptly. Analyse test results and report issues with detailed logs and reproducible steps. Conduct cross-browser testing across Chrome, Firefox, Safari, and Edge to ensure consistent UI/UX. Perform manual testing as necessary to support automated test coverage. Create and execute manual test cases for exploratory, functional, and regression testing. Plan, design, and execute load and performance tests using tools such as JMeter, Gatling, or LoadRunner. Analyse load test results and collaborate with development teams to optimize application performance. Stay current with security trends and contribute to enhancing security testing processes and coverage. Identify areas for process improvement and contribute to continuous evolution of QA best practices. Qualifications: Bachelor's degree in Computer Science, Engineering, or a related field. 2-4 years of experience in software quality assurance, with a focus on automation testing . Proficiency in programming languages such as C#.net, Java, Python, or JavaScript. Hands-on experience with automation tools/frameworks such as Selenium WebDriver, TestNG, JUnit, or similar. Experience with continuous integration and continuous deployment (CI/CD) pipelines. Strong understanding of software testing methodologies , test design techniques , and quality assurance principles . Experience with version control systems such as Git. Understanding of security testing methodologies, tools, and techniques. Excellent problem-solving skills and attention to detail. Strong communication and collaboration skills, with the ability to work effectively in a team environment. Show more Show less
Frontend Developer (Angular) Location: Delhi (Hybrid) Employment Type: Full-Time Experience: 3+ years About the Role We are seeking a talented Frontend Developer with hands-on experience in Angular, React, and modern web technologies to build scalable, performant, and visually consistent applications across our platforms. You will be responsible for translating design mock-ups into pixel-perfect interfaces, integrating RESTful APIs, and delivering seamless UX across devices and browsers. Key Responsibilities · Build and maintain scalable frontend applications using Angular (6+), TypeScript, and JavaScript (ES6+). · Convert designs into responsive and pixel-perfect UI using HTML5, CSS3, and component libraries (Angular Material, Polaris). · Implement robust state management using Redux, RxJS, or Context API. · Integrate with REST APIs and JSON, ensuring high performance and real-time data updates. · Optimize web performance using Lighthouse, GTmetrix, and core web vitals. · Follow cross-browser compatibility best practices. · Collaborate closely with product, backend, and UI/UX teams to deliver well-structured code and intuitive features. · Use Git for version control and participate in code reviews. Required Skills & Experience · Minimum 3 years of experience in frontend development. · Strong proficiency in: HTML5, CSS3, JavaScript, TypeScript, Angular (6+), React (with component library usage), Redux, RxJS, NgRx. · Familiarity with integrating third-party libraries into Angular and React apps. · Ability to translate Figma or similar designs into pixel-perfect UIs. · Solid understanding of RESTful APIs and JSON handling. · Experience with: Performance tuning (lazy loading, tree-shaking, SSR/CSR), Git version control, Unit testing (Jest, Jasmine, Cypress). Good to Have · Experience with Next.js, Micro Frontend Applications and Module Federation, WebSockets, GraphQL, CI/CD pipelines, Shopify Polaris, Azure, or other cloud platforms. · Knowledge of security best practices (XSS, CSRF, CSP), Core Web Vitals optimization, Design patterns for frontend architecture, Server-side rendering (SSR) and client-side rendering (CSR). What We Offer · Competitive salary and perks · Hybrid work environment with flexible leave · Medical insurance for you and your dependents · Opportunities to work on high-impact products · Exposure to best practices in performance, DevOps, and scalable architecture
Senior Security & Compliance Analyst New Delhi, India About ThrivePass. At ThrivePass, we’re on a mission to help employees and businesses Thrive —because benefits should be more than just checkboxes. Through personalized benefits technology, data-driven insights, and meaningful experiences, we empower companies to support their teams in ways that truly matter. We don’t just talk about culture—we build it. Everything we do is rooted in our CARE values : Courageous – We embrace new challenges and fresh ideas. Authentic – We show up as our true selves and value transparency. Resourceful – We find creative solutions and make things happen. Excellent – We hold ourselves accountable and take pride in our work. At ThrivePass, performance isn’t just about hitting goals—it’s about how you show up. We invest in our employees’ growth and encourage bold thinking, collaboration, and continuous learning. Join us in shaping the future of employee benefits! About the Role. We’re looking for a strategic and hands-on Senior Security & Compliance Analyst to drive key initiatives that ensure our organization maintains a strong security posture and complies with global data protection and privacy regulations. This role plays a critical part in shaping our security policies, preparing for audits, and fostering a culture of compliance across the company. You’ll work closely with cross-functional teams, external auditors, and vendors to ensure our operations meet regulatory and customer expectations. Responsibilities. Compliance & Risk Management Stay up to date with all relevant regulatory and compliance frameworks, including but not limited to SOC 2 Type II, GDPR, HIPAA, CCPA & PCI DSS. Ensure continuous compliance with all applicable frameworks through regular assessments, gap analysis, and remediation plans. Coordinate and prepare for third-party audits, penetration tests, and compliance assessments. Own and manage policy creation and documentation aligned with the latest standards and regulations. Lead Business Continuity and Disaster Recovery (BCDR) testing and facilitate regular security incident response simulations. Support and complete vendor security questionnaires using tools like Vanta AI , while supplementing with manual responses as needed. Security Operations & Incident Response Lead root cause analysis, stakeholder coordination, and response for security incidents and events. Manage SIEM tools (e.g., Azure Sentinel ) to ensure actionable logging, threat detection, and reporting. Conduct internal and external audits including vulnerability assessments and risk analysis to proactively identify threats. Cross-Functional Collaboration Partner with engineering, product, IT, and legal teams to embed security best practices across all technical and operational workflows. Act as a strategic partner, ensuring compliance efforts are enabling—not blocking—business innovation. Champion security awareness across the company through training and enablement programs. Reporting & Program Ownership Own and maintain KPIs to track and improve compliance and security performance. Drive projects from initiation to completion using strong project management methodologies. Make compliance approachable and easy to understand for all employees. Requirements. Must-Have: Proven experience in a dedicated security, compliance, or information security role. Deep knowledge of key compliance standards (SOC 2, GDPR, HIPAA, CCPA, PCI DSS). Hands-on experience with SIEM tools (preferably Azure Sentinel). Strong understanding of security incident management and root cause analysis. Experience running audits, coordinating penetration tests, and managing risk registers. Proficiency in drafting and maintaining security policies. Excellent verbal and written communication skills—comfortable interfacing with both technical and non-technical audiences. Demonstrated ability to work cross-functionally and drive security initiatives from start to finish. Nice-to-Have: Familiarity with compliance automation platforms (e.g., Vanta) and security awareness training tools (e.g., KnowBe4). Understanding of AI/automation workflows to improve compliance processes. Experience leading or mentoring other team members. Industry certifications: CISSP, CISA, CISM, CRISC, or equivalent. Strong analytical skills and a continuous improvement mindset. Why You’ll Love Working Work in a fast-paced, innovative environment where your contributions will directly impact operations and scalability. Collaborate with forward-thinking teams that value efficiency, creativity, and experimentation. Be at the forefront of AI and automation adoption, learning and working with the latest tools and technologies. A culture that values courageousness , authenticity , resourcefulness , and excellence (we don’t just say it—we live it). An inclusive and welcoming environment for all. ThrivePass is committed to fostering a workplace where everyone feels valued and respected. We do not and shall not discriminate based on race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status in any of our activities or operations. Join Us! If this role sounds like your next great adventure, we’d love to hear from you. Apply today and let’s build something amazing together! 🚀
Senior Security & Compliance Analyst New Delhi, India About ThrivePass. At ThrivePass, we’re on a mission to help employees and businesses Thrive —because benefits should be more than just checkboxes. Through personalized benefits technology, data-driven insights, and meaningful experiences, we empower companies to support their teams in ways that truly matter. We don’t just talk about culture—we build it. Everything we do is rooted in our CARE values : Courageous – We embrace new challenges and fresh ideas. Authentic – We show up as our true selves and value transparency. Resourceful – We find creative solutions and make things happen. Excellent – We hold ourselves accountable and take pride in our work. At ThrivePass, performance isn’t just about hitting goals—it’s about how you show up. We invest in our employees’ growth and encourage bold thinking, collaboration, and continuous learning. Join us in shaping the future of employee benefits! About the Role. We’re looking for a strategic and hands-on Senior Security & Compliance Analyst to drive key initiatives that ensure our organization maintains a strong security posture and complies with global data protection and privacy regulations. This role plays a critical part in shaping our security policies, preparing for audits, and fostering a culture of compliance across the company. You’ll work closely with cross-functional teams, external auditors, and vendors to ensure our operations meet regulatory and customer expectations. Responsibilities. Compliance & Risk Management Stay up to date with all relevant regulatory and compliance frameworks, including but not limited to SOC 2 Type II, GDPR, HIPAA, CCPA & PCI DSS. Ensure continuous compliance with all applicable frameworks through regular assessments, gap analysis, and remediation plans. Coordinate and prepare for third-party audits, penetration tests, and compliance assessments. Own and manage policy creation and documentation aligned with the latest standards and regulations. Lead Business Continuity and Disaster Recovery (BCDR) testing and facilitate regular security incident response simulations. Support and complete vendor security questionnaires using tools like Vanta AI , while supplementing with manual responses as needed. Security Operations & Incident Response Lead root cause analysis, stakeholder coordination, and response for security incidents and events. Manage SIEM tools (e.g., Azure Sentinel ) to ensure actionable logging, threat detection, and reporting. Conduct internal and external audits including vulnerability assessments and risk analysis to proactively identify threats. Cross-Functional Collaboration Partner with engineering, product, IT, and legal teams to embed security best practices across all technical and operational workflows. Act as a strategic partner, ensuring compliance efforts are enabling—not blocking—business innovation. Champion security awareness across the company through training and enablement programs. Reporting & Program Ownership Own and maintain KPIs to track and improve compliance and security performance. Drive projects from initiation to completion using strong project management methodologies. Make compliance approachable and easy to understand for all employees. Requirements. Must-Have: Proven experience in a dedicated security, compliance, or information security role. Deep knowledge of key compliance standards (SOC 2, GDPR, HIPAA, CCPA, PCI DSS). Hands-on experience with SIEM tools (preferably Azure Sentinel). Strong understanding of security incident management and root cause analysis. Experience running audits, coordinating penetration tests, and managing risk registers. Proficiency in drafting and maintaining security policies. Excellent verbal and written communication skills—comfortable interfacing with both technical and non-technical audiences. Demonstrated ability to work cross-functionally and drive security initiatives from start to finish. Nice-to-Have: Familiarity with compliance automation platforms (e.g., Vanta) and security awareness training tools (e.g., KnowBe4). Understanding of AI/automation workflows to improve compliance processes. Experience leading or mentoring other team members. Industry certifications: CISSP, CISA, CISM, CRISC, or equivalent. Strong analytical skills and a continuous improvement mindset. Why You’ll Love Working Work in a fast-paced, innovative environment where your contributions will directly impact operations and scalability. Collaborate with forward-thinking teams that value efficiency, creativity, and experimentation. Be at the forefront of AI and automation adoption, learning and working with the latest tools and technologies. A culture that values courageousness , authenticity , resourcefulness , and excellence (we don’t just say it—we live it). An inclusive and welcoming environment for all. ThrivePass is committed to fostering a workplace where everyone feels valued and respected. We do not and shall not discriminate based on race, color, religion (creed), gender, gender expression, age, national origin (ancestry), disability, marital status, sexual orientation, or military status in any of our activities or operations. Join Us! If this role sounds like your next great adventure, we’d love to hear from you. Apply today and let’s build something amazing together! 🚀
As a Full Stack Developer at ThrivePass, you will have a pivotal role in the development and maintenance of our state-of-the-art applications. Collaborating with diverse teams, you will be responsible for delivering top-notch solutions aligned with quarterly Big 3 goals. Your expertise will be crucial in designing and implementing robust .NET-based web applications utilizing technologies such as C#, Angular, SQL, and more. Your focus will be on optimizing algorithms for performance, providing technical support throughout the development lifecycle, and ensuring application stability through unit and integration testing. To excel in this role, you should bring at least 4 years of experience in .NET web development, along with a strong command of C#, Angular 6+, SQL, HTML, CSS, and Entity Framework. Your proficiency in OOP concepts, SDLC, and MVC design patterns will be essential, as well as your ability to work with .NET Core, LINQ, and unit testing. Additionally, your familiarity with tools like Visual Studio, SQL Server, Git, and JIRA will be advantageous. Strong analytical skills, effective communication, and a passion for learning and adopting new technologies are key attributes we are seeking. While not mandatory, familiarity with Agile/Scrum methodologies, modern front-end frameworks like Vue.js, and Azure services can be beneficial. Your enthusiasm for exploring new technologies and commitment to following security best practices will be highly valued. Proficiency in Angular 10+, Material Design framework, and TypeScript will be a plus. At ThrivePass, we offer a supportive work environment that encourages career growth and professional development. You will have the opportunity to engage with real-world scenarios, receive training on cutting-edge technologies, and enjoy a competitive salary package. If you are enthusiastic about crafting innovative solutions and thrive in a culture that nurtures growth and excellence, we invite you to apply by sending your resume to Shivani.chauhan@thrivepass.com. We are excited to welcome individuals who are dedicated to pushing boundaries and delivering exceptional results in the world of software development. Join us on this journey of innovation and growth at ThrivePass!,
🚨 We're Hiring! | Senior Security & Compliance Analyst 📍 New Delhi, India | Hybrid | Immediate Joiners Preferred Are you a Security & Compliance pro ready to lead audits, drive risk strategy, and help shape the future of employee benefits? ThrivePass is looking for a Senior Security & Compliance Analyst to join our high-performing, mission-driven team! 💼 About the Role: As a Senior Security & Compliance Analyst , you’ll be the go-to expert for everything security and compliance. You’ll play a key role in ensuring ThrivePass meets global data privacy standards like SOC 2 Type II, GDPR, HIPAA, and PCI DSS , while working cross-functionally with tech, product, and legal teams. You’ll lead: ✅ Regulatory audits & penetration tests ✅ Risk & incident response ✅ Security awareness programs ✅ Vendor security assessments (using tools like Vanta AI) ✅ Business Continuity & Disaster Recovery tests 🔍 What We’re Looking For: ✔ 5+ years in security/compliance/information security ✔ Experience with SOC 2, GDPR, HIPAA, CCPA, PCI DSS ✔ Excellent documentation & cross-team collaboration skills ✔ Experience managing audits, writing policies, handling incident response ✔ Strong project management and root cause analysis expertise Nice to have: 🏅 CISSP, CISA, CISM, CRISC certifications ⚙ Familiarity with Vanta, KnowBe4, or Azure Sentinel 🧠 Experience with AI and automation tools 🌟 Why ThrivePass? At ThrivePass, we don’t just talk culture—we live it through our CARE values: Courageous | Authentic | Resourceful | Excellent 💥 Be part of a team that embraces innovation, transparency, and bold thinking. 📈 Work on cutting-edge AI + compliance initiatives. 🎉 Enjoy a diverse, inclusive, and high-impact work culture. 👉 Ready to join us? 🔗 Apply now or drop us a message! Let’s build something amazing together 🚀 #hiring #SecurityAnalyst #ComplianceJobs #SOC2 #CyberSecurity #GDPR #infosec #Vanta #ThrivePass #AIinSecurity #NewDelhiJobs #TechCareers #ImmediateJoiners
As a Cloud Infrastructure & Security Specialist at ThrivePass, you will play a crucial role in overseeing cloud services optimization and security. Your responsibilities will include configuring cloud services for maximum security, managing Azure defender services, automating and optimizing cloud services and processes, and ensuring the infrastructure's compliance with necessary security frameworks. Your primary focus will be on enhancing infrastructure efficiency and integrity while managing compliance, disaster recovery, and cloud security. You will work collaboratively with various teams to debug issues related to cloud infrastructure, manage and configure various Azure cloud environment services, and set up a secure remote workstation system. In this role, it is essential to think logically and strategically to implement infrastructure initiatives throughout the organization. You will be responsible for managing Azure DevOps for optimization, ThrivePass infrastructure for performance and cost optimization, and ensuring maximum availability of the infrastructure for disaster management. Additionally, you will configure and manage backups of all services as per ThrivePass policies, set up Azure Sentinel/SIEM tools for security monitoring, and manage infrastructure alerts to ensure appropriate parties are notified for any outages or performance issues. Your expertise in handling various priorities and providing clarity on prioritization will be valuable in this position. To qualify for this role, you should have 3-5 years of experience in a similar position, a Bachelor's or Master's degree in Computer Science/IT or a related field, and cloud certifications would be a plus. Fluency in spoken English and excellent organizational skills are essential requirements for this role. Your enthusiasm for learning and updating your knowledge regularly will contribute to your success in managing and configuring Azure B2C environment effectively.,
Job Description: GRC Analyst Location: New Delhi, India Company: ThrivePass Experience - 5+ years About ThrivePass At ThrivePass, we empower organizations to offer benefits that truly matter. Our platform supports employee wellbeing, compliance, and growth through innovative technology, data-driven insights, and exceptional user experiences. Our culture is rooted in our CARE values: Courageous – We embrace new challenges and bold ideas. Authentic – We value transparency and show up as our true selves. Resourceful – We find creative solutions and make things happen. Excellent – We take pride in our work and hold ourselves accountable. About the Role We are seeking a Senior Compliance Analyst to lead and maintain our adherence to global regulatory and industry standards, such as SOC 2 Type II ,ISO27001, GDPR, HIPAA, and CCPA . This role is crucial for supporting our audit-readiness, improving policy frameworks, and driving a company-wide culture of compliance. You’ll work cross-functionally with internal teams and external auditors to ensure our systems and practices align with the latest compliance requirements. Key Responsibilities Regulatory Compliance & Audit Readiness Stay current with relevant regulations, including SOC 2, GDPR, HIPAA, and CCPA. Conduct regular gap assessments , develop remediation plans , and ensure ongoing compliance. Prepare documentation and coordinate with third-party auditors and assessors . Creating, reviewing, and updating internal policies, standards, and procedures to align with regulatory requirements and best practices. Manage compliance automation tools such as Vanta AI and complete vendor risk questionnaires. Evaluating the security posture and compliance of vendors and other third parties to minimize supply chain risks. Business Continuity & Risk Management Lead and document Business Continuity and Disaster Recovery (BCDR) testing. Support internal risk assessments and vendor management programs. Work with stakeholders to address gaps and exposures caused due to risks. Conducting risk assessments to identify, analyze, and evaluate potential threats to the organization's assets, operations, and reputation. This includes developing and implementing risk mitigation strategies and maintaining a risk register. Training & Enablement Promote a culture of compliance across the organization. Facilitate internal security awareness and compliance training programs. Act as a resource to teams on compliance-related matters without stalling innovation. Program Oversight & Metrics Define and track KPIs to measure compliance program effectiveness. Drive continuous improvements and ensure compliance is embedded in business processes. Support legal, IT, and product teams in evaluating data protection requirements. Preparing and presenting reports to management and stakeholders on the organization's risk and compliance posture. Requirements Must-Have: Proven experience in a compliance, risk, or audit function. Strong knowledge of SOC 2, GDPR, HIPAA, CCPA , and vendor management. Familiarity with compliance tools like Vanta. Excellent communication and documentation skills. Experience working with cross-functional teams . Skilled in drafting and managing policies and procedures . Nice-to-Have: Experience with security awareness platforms (e.g., KnowBe4). Familiarity with ITSM systems like Freshservice. Knowledge of AI/automation in compliance workflows . Relevant certifications: CISA, CRISC, or equivalent . Why Join ThrivePass? Work in a fast-paced, mission-driven company with a meaningful product. Learn and grow through exposure to emerging tools and technologies. Be part of an inclusive, value-driven culture that prioritizes trust and impact.
Job Description: GRC Analyst Location: New Delhi, India Company: ThrivePass Experience - 5+ years About ThrivePass At ThrivePass, we empower organizations to offer benefits that truly matter. Our platform supports employee wellbeing, compliance, and growth through innovative technology, data-driven insights, and exceptional user experiences. Our culture is rooted in our CARE values: Courageous – We embrace new challenges and bold ideas. Authentic – We value transparency and show up as our true selves. Resourceful – We find creative solutions and make things happen. Excellent – We take pride in our work and hold ourselves accountable. About the Role We are seeking a Senior Compliance Analyst to lead and maintain our adherence to global regulatory and industry standards, such as SOC 2 Type II ,ISO27001, GDPR, HIPAA, and CCPA . This role is crucial for supporting our audit-readiness, improving policy frameworks, and driving a company-wide culture of compliance. You’ll work cross-functionally with internal teams and external auditors to ensure our systems and practices align with the latest compliance requirements. Key Responsibilities Regulatory Compliance & Audit Readiness Stay current with relevant regulations, including SOC 2, GDPR, HIPAA, and CCPA. Conduct regular gap assessments , develop remediation plans , and ensure ongoing compliance. Prepare documentation and coordinate with third-party auditors and assessors . Creating, reviewing, and updating internal policies, standards, and procedures to align with regulatory requirements and best practices. Manage compliance automation tools such as Vanta AI and complete vendor risk questionnaires. Evaluating the security posture and compliance of vendors and other third parties to minimize supply chain risks. Business Continuity & Risk Management Lead and document Business Continuity and Disaster Recovery (BCDR) testing. Support internal risk assessments and vendor management programs. Work with stakeholders to address gaps and exposures caused due to risks. Conducting risk assessments to identify, analyze, and evaluate potential threats to the organization's assets, operations, and reputation. This includes developing and implementing risk mitigation strategies and maintaining a risk register. Training & Enablement Promote a culture of compliance across the organization. Facilitate internal security awareness and compliance training programs. Act as a resource to teams on compliance-related matters without stalling innovation. Program Oversight & Metrics Define and track KPIs to measure compliance program effectiveness. Drive continuous improvements and ensure compliance is embedded in business processes. Support legal, IT, and product teams in evaluating data protection requirements. Preparing and presenting reports to management and stakeholders on the organization's risk and compliance posture. Requirements Must-Have: Proven experience in a compliance, risk, or audit function. Strong knowledge of SOC 2, GDPR, HIPAA, CCPA , and vendor management. Familiarity with compliance tools like Vanta. Excellent communication and documentation skills. Experience working with cross-functional teams . Skilled in drafting and managing policies and procedures . Nice-to-Have: Experience with security awareness platforms (e.g., KnowBe4). Familiarity with ITSM systems like Freshservice. Knowledge of AI/automation in compliance workflows . Relevant certifications: CISA, CRISC, or equivalent . Why Join ThrivePass? Work in a fast-paced, mission-driven company with a meaningful product. Learn and grow through exposure to emerging tools and technologies. Be part of an inclusive, value-driven culture that prioritizes trust and impact.