Senior Information Security Analyst ensuring the security of critical tech environments at Servix. Responsible for incident response, vulnerability management, and security controls implementation.
About the role
- Regulatory Compliance Analyst managing compliance programs across multiple frameworks for a fintech startup. Driving operational adherence and building a proactive compliance culture within the team.
Responsibilities
- Own Rain’s compliance program across DORA, SOC 2, SOC 1, GDPR, and PCI, ensuring we meet and exceed regulatory and audit requirements
- Lead all compliance audits and certifications end-to-end — including renewals, observation periods, and new certifications Rain chooses to pursue
- Maintain and evolve Rain’s policies, keeping them up-to-date, consistent across entities, and aligned with regulatory expectations
- Ensure operational adherence by partnering with engineering, security, legal, and operations to make sure we are doing what we say we are doing in our policies
- Build a proactive compliance culture, helping the team understand obligations and embedding compliance into day-to-day decision making
- Identify gaps and risks early, then drive remediation plans to keep Rain audit-ready at all times
- Assist the team in other compliance-related activities, including actionalize and refine KYB, KYC, and AML processes and procedures based on best practices informed by operational data
Requirements
- 3–7+ years of compliance, GRC, or security assurance experience, ideally in fintech, payments, SaaS, or other regulated industries
- Deep familiarity with SOC 2, SOC 1, GDPR, PCI, and other compliance frameworks, with a proven track record of leading successful audits
- Excellent program management skills — you can coordinate across teams, manage timelines, and keep multiple compliance workstreams moving
- Strong attention to detail with the ability to turn complex requirements into clear, actionable tasks
- Strong communication and influence skills, able to work with everyone from engineers to executives to external auditors
Benefits
- Unlimited time off
- Flexible working
- Easy to access benefits
- Retirement goals
- Equity plan
- Rain Cards
- Health and Wellness
- Team summits
Job title
Job type
Experience level
Salary
Degree requirement
Location requirements
Senior Application Security Analyst ensuring application and infrastructure security for a European AI cloud. Collaborating with teams to build defenses and mitigate vulnerabilities in a hands - on role.
Senior professional managing information security at Sicredi's SOC, ensuring data confidentiality and response to security incidents.
Cyber Security Analyst handling SOC, SIEM, and incident response for multiple sites. Analyzing incidents and improving security resilience in a hybrid working environment.
Information Security Analyst designing and reviewing security architectures at Bellinati Perez. Collaborating on cloud environments and implementing security measures for projects.
Security Analyst managing and validating AI - driven investigations into cybersecurity threats. Collaborating with engineering and product teams to enhance security monitoring capabilities.
Information Security Analyst overseeing security tools and incident responses. Engaging in corporate security initiatives within a technological framework.
Cyber Security Analyst role supporting USAF Cloud One Architecture and common shared services contract. Involves compliance monitoring, incident response, and collaboration with cybersecurity teams.
Senior Cyber Security Analyst at GDIT identifying and mitigating cyber threats while ensuring compliance with NIST and ISO standards. Involves oversight of security controls and enterprise risk assessments.
Junior Information Security Analyst focusing on identity and access management at Evertec. Supporting operational activities and collaborating with IT and security teams in a hybrid setting.