Senior Compliance Analyst

BlueAlly is seeking a Senior Compliance Analyst to join our team who will work closely with our IT and security functions. You'll be focused on handling the execution of tasks for the GRC Program within BlueAlly, leading multiple compliance initiatives including SOC 1, SOC 2, ISO frameworks, and sustainability standards. You will ensure timely delivery of high-quality compliance deliverables and actively contribute to process optimization and improvement initiatives. This role requires understanding of multiple compliance frameworks, information security practices, and experience working with technology teams.Lead the organization's comprehensive compliance program, including SOC 1, SOC 2, ISO 27001, ISO 9001, O-TTPS, and NetZero 2040 initiativesDevelop and maintain an integrated compliance program that efficiently addresses requirements across multiple standardsDesign, implement, monitor, and maintain controls across multiple frameworks while collaborating with internal business partnersMaintain BlueAlly's compliance data and evidence within the organization's GRC toolAnswer and manage security questionnaires and Third-Party Risk Management (TPRM) assessments from customers and prospectsMaintain and update data in the knowledge base to ensure accurate and current security documentationMaintain the company's Trust Center, including keeping all information current and upto-date and reviewing and approving access requestsConduct regular compliance audits and assessments to evaluate the effectiveness of internal controls and identify areas for improvementLead and handle all stages of compliance audits, ensuring successful completion across all frameworksAct as the main point of contact for external auditors during compliance reviews and certification renewalsCollaborate with internal teams (IT, security, and legal) to ensure alignment between business operations and regulatory requirementsPrepare detailed reports and dashboards to track compliance status and performance metricsCreate and maintain documentation for all compliance programsMonitor changes to laws, regulations, and standards that impact compliance programs and ensure timely updates to policies and procedures