Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Security Compliance Analyst

$50 - $55 per hour

Actalent

Job Title: Security Compliance Analyst

Job Description

The Security Compliance Analyst leads the full certification lifecycle for key security frameworks, acting as the primary bridge between technical engineering teams and external auditors. This role focuses on managing ISO and SOC 2 Type 2 audits end-to-end, translating complex technical environments into audit-ready evidence, and using AI and automation to reduce the compliance burden on engineering teams. The ideal candidate is a hands-on compliance practitioner who understands the realities of SaaS products and can clearly articulate technical control requirements to both technical and non-technical stakeholders.

Responsibilities

  • Own and drive the full lifecycle of ISO and SOC 2 Type 2 audits, from initial planning through final reporting.

  • Define detailed audit requirements and translate control language into clear, actionable technical requests for engineering teams.

  • Request, collect, and organize evidence from technical owners, ensuring completeness, accuracy, and audit readiness.

  • Review and validate the integrity and sufficiency of technical evidence, identifying gaps, inconsistencies, or invalid submissions.

  • Track remediation activities for identified gaps and follow up with stakeholders to ensure timely closure of issues.

  • Serve as the primary liaison with external audit firms, speaking the language of auditors and effectively defending the control environment.

  • Create and maintain an annual audit calendar, including timelines, milestones, and preparation activities for audit windows.

  • Ensure the organization is well prepared for audits by coordinating pre-audit reviews, walkthroughs, and readiness assessments.

  • Utilize AI and large language models to automate evidence collection, parse system logs, draft control descriptions, and identify potential compliance gaps before audits.

  • Apply a human-in-the-loop approach to AI usage by critically reviewing and validating AI-generated outputs for accuracy and completeness.

  • Review technical configuration reports for infrastructure, networking, containers, and databases to determine whether settings align with secure configuration expectations.

  • Research and identify appropriate secure configurations and control implementations for technologies not previously encountered.

  • Clearly explain to engineers what specific evidence or configurations are required, using precise technical language rather than generic control descriptions.

  • Collaborate with engineering and security teams to define and refine technical controls that align with ISO, SOC 2 Type 2, and other relevant frameworks.

  • Communicate complex compliance requirements in clear, accessible terms to non-technical stakeholders across the organization.

  • Push back constructively on auditors when appropriate, providing reasoned explanations and evidence to support the existing control environment.

  • Contribute to the continuous improvement of compliance processes by identifying opportunities to streamline workflows and reduce manual effort through automation and AI.

Essential Skills

  • Proven, specific experience managing end-to-end ISO and SOC 2 Type 2 audits, including planning, execution, and final reporting.

  • Baseline understanding of ISO and SOC 2 Type 2 frameworks and their associated control requirements.

  • Experience running audits, with a preference for technology-focused auditing experience.

  • Demonstrated ability to understand and assess technical controls in cloud and SaaS environments.

  • Technical literacy in cloud platforms, with a particular preference for experience with AWS.

  • Ability to read and interpret technical configuration reports and determine whether configurations meet secure standards.

  • Capability to identify when provided technical evidence is insufficient or invalid and to request appropriate corrective evidence.

  • Demonstrated experience using AI and large language models to streamline compliance and audit tasks, including evidence collection and analysis.

  • A clear human-in-the-loop philosophy for validating AI output to ensure accuracy and reliability.

  • Strong communication skills, including the ability to explain complex compliance requirements to non-technical stakeholders.

  • Ability to understand and articulate detailed technical requests from engineers and translate them into compliance terms.

  • Confidence and professionalism in pushing back on auditors when necessary, supported by clear evidence and reasoning.

  • Comfort discussing and auditing SaaS infrastructure running on public cloud environments such as AWS, Azure, or GCP and private cloud environments.

  • Familiarity with networking concepts and components, including firewalls, switches, routers, VPNs, and secure remote access.

  • Exposure to Linux-based server environments and various database management systems.

  • Understanding of containerized environments, including Kubernetes and Docker.

  • Ability to research and determine appropriate secure settings and configurations for unfamiliar technologies.

Additional Skills & Qualifications

  • Understanding of the NIST framework, particularly as it applies to security controls and policy design.

  • Experience working with security controls that align with NIST-based policies.

  • Creative use of AI to collect, review, and automate evidence handling in a flexible and scalable way.

  • CISSP certification, which demonstrates a deep understanding of technical security controls (strongly valued but not required).

  • Experience at a CISO or senior security leadership level is beneficial, though practical hands-on experience is preferred over certifications alone.

  • Baseline familiarity with NIST and other security frameworks used to structure security controls and policies.

  • Interest in continuously improving audit and compliance processes through automation and innovative tooling.

Work Environment

The role focuses on a SaaS product operating across both public cloud platforms (such as AWS, Azure, and GCP) and private cloud environments. You will regularly interact with infrastructure components, including firewalls, switches, routers, VPNs, and secure remote access solutions, as well as Linux-based server environments and various database management systems. The environment makes extensive use of container technologies like Kubernetes and Docker. Collaboration with engineering and security teams is central to the role, and you will frequently work with technical configuration reports, system logs, and automated tools. AI and large language models are an integral part of the workflow, particularly for evidence collection, log parsing, and drafting control documentation. The position emphasizes a professional, detail-oriented, and collaborative culture, where clear communication, proactive planning, and continuous improvement of compliance processes are highly valued.

Job Type & Location

This is a Contract position based out of Morrisville, NC.

Pay and Benefits

The pay range for this position is $50.00 - $55.00/hr.

Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: • Medical, dental & vision • Critical Illness, Accident, and Hospital • 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available • Life Insurance (Voluntary Life & AD&D for the employee and dependents) • Short and long-term disability • Health Spending Account (HSA) • Transportation benefits • Employee Assistance Program • Time Off/Leave (PTO, Vacation or Sick Leave)

Workplace Type

This is a hybrid position in Morrisville,NC.

Application Deadline

This position is anticipated to close on Jul 21, 2026.

About Actalent

Actalent is a global leader in engineering and sciences services and talent solutions. We help visionary companies advance their engineering and science initiatives through access to specialized experts who drive scale, innovation and speed to market. With a network of almost 20,000 consultants and 5,000 clients across the U.S., Canada, Asia and Europe, Actalent serves many of the Fortune 500. We are proud to be an Engineering News-Record (ENR) Top 500 Design Firm for our engineering design services and a ClearlyRated Best of Staffing® winner for both client and talent service.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

If you would like to request a reasonable accommodation, such as the modification or adjustment of the job application process or interviewing process due to a disability, please email View email address on click.appcast.io for other accommodation options.

San Francisco Fair Chance Ordinance: Pursuant to the San Francisco Fair Chance Ordinance, for all positions located in the city and county of San Francisco, we will consider for employment qualified applicants with arrest and conviction records.

Massachusetts Lie Detector: It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Use of Artificial Intelligence (AI): We may use Artificial Intelligence (AI) to support parts of our hiring process, including sourcing, screening, and evaluating candidates. AI helps assess applications and qualifications, but final decisions are made by our hiring team. By applying, you acknowledge and agree that your application may be reviewed using AI tools.

Vacancy posted 12 hours ago
Similar jobs that could be interesting for youBased on the Security Compliance Analyst in Morrisville, NC vacancy
  •  ...Information Security Compliance Analyst Location: Raleigh, NC (Hybrid) Type: Contract Duration: 6+ Months The client is seeking a self-motivated and strategic Security Specialist to support ongoing re-engineering efforts aimed at embedding data protection and privacy... 
    Suggested
    Contract work

    Crescens

    Raleigh, NC
    3 days ago
  •  ...About the role: Eagle Creek Renewable Energy is seeking an experienced Information Security Compliance Analyst to join our team and help safeguard our organization's regulatory standing and the security of the critical generation assets across our fleet of hydropower facilities... 
    Suggested

    Eagle Creek Renewable Energy

    Raleigh, NC
    2 days ago
  • $78.9k - $123.3k

     ...Position Overview We are seeking a detail-oriented cybersecurity compliance professional to support system authorization and continuous...  ...Federal environment. This role is responsible for managing the security authorization lifecycle for one or more information systems,... 
    Suggested
    Permanent employment
    Full time
    Part time
    Work at office
    Local area
    Remote work

    Noblis

    Raleigh, NC
    4 days ago
  •  ...Computer World Services Corp (CWS) is seeking an experienced Security Analyst/Data Security Specialist to support the planning,...  ...communication protocols, and security tools. Documentation and Compliance: Document security incidents, system configurations, and... 
    Suggested
    Local area

    Computer World Services

    Morrisville, NC
    5 days ago
  •  ...accommodation or an alternative application process. IT Security Operations Analyst Full-time Regular Cary, NC, US 1 Attachments Position Overview...  ...posture improvement efforts. Security Governance, Risk & Compliance Control frameworks, risk management, and audit readiness... 
    Suggested
    Full time

    GenWorks Group

    Cary, NC
    5 days ago
  • $70k - $90k

     ...play a critical role in our Public Key Infrastructure (PKI) for our global key management initiatives. You will execute critical security operations activities - incident response, vulnerability management, analysis, event management, and recovery. This hands‑on position... 
    Temporary work
    Work experience placement
    Work at office
    Local area
    3 days per week

    MetLif

    Cary, NC
    4 days ago
  •  ...Information Security Specialist Hybrid - 3 days a week onsite. Responsibilities: Identify and evaluate potential areas of Information Security threat by assessing the probability and impact, and implementing associated mitigations. Monitor and contribute... 
    3 days per week

    Axelon

    Cary, NC
    3 days ago
  • $130k - $140k

     ...Workday Security Analyst Salary: $130,000 - $140,000 per year Location: Raleigh, NC The Workday Security Administrator is a Senior...  ...within the Workday system to ensure data integrity and compliance. The Workday Security Administrator collaborates with Management... 
    Work at office

    Affinity Executive Search

    Raleigh, NC
    3 days ago
  •  ...implemented Workday environment, is seeking a Senior Workday Security Administrator to serve as the final addition to its HRIS team....  ...IT, audit, and business stakeholders to ensure data integrity, compliance, and scalable security design while supporting ongoing enhancements... 
    Full time
    H1b
    Relocation package

    Twenty80 llc

    Raleigh, NC
    4 days ago
  • $65 - $66 per hour

     ...IT Security Analyst Raleigh, North Carolina, United States $ 65.00 - 66.00 (US Dollar) About the Job IT Security Analyst IT Security Analyst needs 3+ years experience IT Security Analyst requires: IT security Cyber security Banking industry Finance... 

    Global Channel Management

    Raleigh, NC
    5 days ago
  •  ...with leaders such as Google, Atlassian, and Microsoft. As a Security Analyst at Lucid Software, you will protect our corporate assets,...  ...assessments, customer trust, and support GRC (Governance, Risk, and Compliance) operations. Lucid Software's security team fosters an... 
    Remote work

    Lucid Software

    Raleigh, NC
    3 days ago
  • $124.2k - $186.2k

     ...About the team: The Information Security organization advances the overall state of security at Rubrik through purposeful initiatives...  ...and regulations; Perform ongoing activities in compliance with service and contractual obligations; Participate in role... 
    Local area
    Remote work

    Rubrik

    Raleigh, NC
    5 days ago
  •  ...Senior Security Analyst MaintainX is the world's leading AI-powered maintenance and asset management platform for industrial and frontline...  ...on security operations, vulnerability management, and compliance support. You will work with tools like Datadog, Wiz, and AWS... 
    Work at office
    Worldwide

    MaintainX

    Raleigh, NC
    2 days ago
  • $40 per hour

    A cybersecurity training company is seeking experienced professionals to evaluate AI-generated security content and solve technical cybersecurity problems. You will work remotely, assessing accuracy, and contributing to the development of AI security tools. Candidates... 
    Hourly pay
    Remote work
    Flexible hours

    DataAnnotation

    Raleigh, NC
    1 day ago
  • $76.4k - $138.6k

     ...systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950...  ...business value. The opportunity As an Offensive Security Analyst on the Attack Surface Management team, you will play a key role... 
    Summer holiday
    Local area
    Flexible hours

    EY

    Raleigh, NC
    4 days ago
  •  ...SAP Security Analyst/Admin job at The Maven Group, LLC. Raleigh, NC. SAP Security Analyst/Admin Direct Hire REMOTE but must reside within 3 hours of Raleigh US Citizens, Green Card, Perm Resident (no sponsorship) This primarily remote role involves SAP Security Administration... 
    Permanent employment
    Remote work

    Payfuture Technologies

    Raleigh, NC
    1 day ago
  • $40 per hour

    A cybersecurity company is seeking experienced professionals to evaluate AI-generated security content and solve technical cybersecurity problems. This role can be performed remotely and offers flexible hours, with hourly pay starting at $40+. The ideal candidates will... 
    Remote job
    Hourly pay
    Flexible hours

    DataAnnotation

    Raleigh, NC
    2 days ago
  •  ...remote. Our direct client has a new opening for a Lead Security Analyst 141809 This job is 14 months to start, and the...  ..., and cross-functional goal achievement Regulatory compliance & policy implementation Incident response & threat mitigation... 
    Local area
    Remote work

    FHR

    Morrisville, NC
    2 days ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Morrisville, NC
    more than 2 months ago
  •  ...teammates working together to improve the health and well‑being of the communities we serve across North Carolina. The HCS Compliance Analyst II will primarily support Hospital Compliance and may have responsibilities across the Compliance and Privacy Operations including... 

    UNC Health Care

    Morrisville, NC
    1 day ago
  • $31.04 - $44.62 per hour

     ...teammates, whose mission is to improve the health and well-being of the unique communities we serve. Summary : The HCS Compliance Analyst I will be assigned to support the Compliance and Privacy Operations - Third Party Risk Management Department in the... 
    Hourly pay
    Full time

    UNC Health Care

    Morrisville, NC
    10 days ago
  • $110k - $125k

    Nelnet in Raleigh, NC, is hiring a Security Advisor to provide information security consulting and compliance services while working remotely. This role involves assessing customers' compliance with various regulations and identifying remediation steps. Candidates should... 
    Remote job

    Nelnet

    Raleigh, NC
    4 days ago
  •  ...results, and delivering preventative maintenance services. Job Description Perform multi-point vehicle inspections to ensure compliance with emissions standards and state regulations. Document inspection results and maintain accurate records. Communicate pass... 
    Full time
    Local area
    Flexible hours

    Premium Velocity Auto LLC

    Cary, NC
    4 days ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Cary, NC
    more than 2 months ago
  •  ...performing services as a Lube Technician. Job Responsibilities: Perform multi-point Inspection of automotive vehicles to ensure compliance to emission standards and governmental regulations and maintain detailed records of vehicles inspected. Communicate whether... 
    Full time
    Temporary work
    Local area
    Flexible hours

    Premium Velocity Auto LLC

    Cary, NC
    1 day ago
  •  ...Hybrid - 3 days a week onsite. Rate $60 - $65/hour W2 Job Description Summary: Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information... 
    3 days per week

    Lenmar Consulting

    Cary, NC
    3 days ago
  • $28.87 - $41.5 per hour

     ...teammates working together to improve the health and well‑being of the communities we serve across North Carolina. Summary The HCS Compliance Analyst II primarily supports Physician Compliance and may have responsibilities across the Compliance and Privacy Operations... 
    Hourly pay
    Full time

    Direct Jobs

    Morrisville, NC
    1 day ago
  • $50 - $60 per hour

    DataAnnotation is committed to creating high-quality AI. Enjoy the flexibility of remote work and the freedom to set your own schedule. This is an opportunity to work with us as an independent contractor.   We're currently expanding into an exciting new area – teaching...
    Hourly pay
    Contract work
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Cary, NC
    more than 2 months ago
  •  ...Trade Compliance Analyst MACOM designs and manufactures semiconductor products for Data Center, Telecommunication and Industrial and Defense applications. Headquartered in Lowell, Massachusetts, MACOM has design centers and sales offices throughout North America, Europe... 
    Work at office

    MACOM

    Durham, NC
    11 days ago
  • $147.9k - $200k

     ...Job Summary We are seeking a highly skilled and experienced Compliance specialist to join our Ethics & Compliance (EC) team. The successful candidate will play a critical role in ensuring our partners (distributors and resellers) adhere to our compliance standards and... 
    Work at office
    Local area
    Work from home
    Worldwide
    3 days per week

    NetApp

    Durham, NC
    3 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Security Compliance Analyst. Be the first to apply!