Commvault logo
Commvault

Commvault is the gold standard in cyber resilience, helping customers prevail against ransomware at the lowest TCO.

Compliance Analyst

ComplianceComplianceFull TimeRemoteMid LevelTeam 1,001-5,000Since 1996H1B SponsorCompany SiteLinkedIn

Location

United States

Posted

8 days ago

Salary

$54.4K - $120.8K / year

Seniority

Mid Level

No structured requirement data.

Job Description

Compliance Analyst

Commvault

Role Description Commvault is seeking a Compliance Analyst to join our Governance, Risk, and Compliance (GRC) team and play a key role in operating and scaling our global compliance program. Reporting to the Compliance Manager, this is an individual contributor role responsible for managing complex security and compliance frameworks, developing policies and training, supporting audits, and driving consistent, risk-based compliance practices across the organization. What You'll Do... - Manage and maintain compliance controls across multiple global security and regulatory frameworks, including ISO 27001, SOC 2, HIPAA, PCI DSS, and other applicable standards. - Lead gap assessments and readiness activities for new or evolving compliance frameworks and regulatory requirements. - Support and coordinate external audits and certifications, including evidence collection, auditor engagement, issue tracking, and remediation management. - Support the development and management of policies and procedures. - Assist in the coordination of company-wide training and awareness initiatives. - Maintain high-quality compliance documentation, evidence repositories, and control artifacts to support audits and customer inquiries. - Partner closely with Security, IT, Engineering, Legal, Privacy, and Operations teams to implement controls and drive remediation efforts. Qualifications - 2-4 years of experience in compliance, GRC, security assurance, or a related discipline within a technology or SaaS environment. - Hands-on experience operating compliance programs aligned to multiple frameworks (e.g., ISO 27001, SOC 2, HIPAA, PCI DSS). - Strong understanding of control design, implementation, and testing, as well as compliance best practices. - Experience supporting external audits and working directly with auditors, assessors, or certification bodies. - Demonstrated ability to manage complex, overlapping priorities with strong attention to detail and sound judgment. - Strong written and verbal communication skills, including the ability to engage effectively with internal stakeholders and external customers. - Ability to operate independently as a senior individual contributor while collaborating effectively across teams. - Experience with GRC tools, compliance management platforms, policy development, control testing, or vendor risk management is a plus. - Trusted practitioner with a pragmatic, risk-based mindset. - Comfortable operating with autonomy and accountability in a growing compliance program. - Detail-oriented while able to connect controls to broader risk and business context. - Collaborative, reliable, and respected by technical and non-technical partners. - Professional and credible in audit and customer-facing interactions. Benefits - Continuous professional development and product training. - Clear career growth and advancement opportunities. - Inclusive company culture. - Comprehensive global benefits package. Company Description Commvault (NASDAQ: CVLT) is the gold standard in cyber resilience. The company empowers customers to uncover, take action, and rapidly recover from cyberattacks – keeping data safe and businesses resilient. The company’s unique AI-powered platform combines best-in-class data protection, exceptional data security, advanced data intelligence, and lightning-fast recovery across any workload or cloud at the lowest TCO. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks, improve governance, and do more with data.

Related Categories

Related Job Pages

More Compliance Jobs

Tailored Brands logo

Senior Customs Compliance Manager

Tailored Brands

Tailored Brands is a men’s apparel retailer whose high-profile brands sell clothing online and at stores across North America and the United Kingdom. Known fo

Compliance8 days ago

Role Description We currently have an exciting opportunity for a Senior Customs Compliance Manager to join our Legal team, reporting to a Legal Department Vice President. This role will lead and strengthen Tailored Brands’ U.S. customs compliance program, helping ensure imports are managed in accordance with applicable Customs and Border Protection requirements, internal controls, and company policies. - Lead the company’s customs compliance program for imported goods, including oversight of policies, procedures, controls, and governance related to U.S. import activity. - Customs compliance oversight with customs brokers and external advisors, including expectations for accuracy, responsiveness, documentation, and escalation handling in coordination with Logistics and Transportation. - Oversee customs classification, valuation, country-of-origin, duty, fee, and recordkeeping practices to support compliant entry activity and reduce risk. - Manage importer-of-records (IOR) compliance across company’s legal entities, including recordkeeping, entity transitions and communications with carriers and customs brokers to ensure continuity of compliant import activity. - Partner with Supply Chain, Logistics, Finance, and other business teams to review import processes, identify control gaps, and implement practical improvements. - Identify and pursue duty recovery and optimization opportunities, including preferential tariff programs, tariff rate quotas (TRQ), duty drawback and applicable trade agreement benefits, in coordination with Finance, Supply Chain and Sourcing. - Collaborate with Finance and Accounting on duty accruals, landed cost modeling, broker invoice reconciliation, and compliance-related reporting. - Direct internal monitoring and periodic compliance reviews, including post-entry validation, broker performance review, issue resolution, and remediation tracking. - Lead the company’s response to customs audits, inquiries and regulatory matters, including management of prior disclosures, by coordinating entry-level documentation, issue identification, financial exposure quantification, and business responses, and legal review in coordination with internal and outside trade counsel. - Monitor and manage compliance with forced labor import restrictions (UFLPA and related enforcement), including coordination with Supply Chain, Sourcing and corporate responsibility function on supplier documentation and withhold release order (WRO) risk. - Monitor changes in customs laws, regulations, rulings, trade programs, and enforcement priorities, and translate them into clear business guidance and process updates. - Coordinate with CTPAT program owner on import-related security requirements as applicable. - Develop training, playbooks, and operating standards that build and develop internal capability and ensure consistent execution by internal and external partners involved in import activity. - Other duties as assigned. Qualifications - Bachelor’s degree required; degree in Business, Supply Chain, International Trade, Legal Studies, Finance, or a related field preferred. - 8+ years of progressive experience in customs compliance, global trade compliance, import operations, trade advisory, or a related field. - Strong working knowledge of U.S. Customs and Border Protection regulations, import controls, HTS/HS tariff classification, valuation, country of origin, broker management, duty and fee compliance, Automated Commercial Environment (ACE) portal, and customs documentation requirements, preferably with knowledge of apparel and textile classifications. - Proficiency in customs valuation methodologies including transaction value, assists, and royalties and ability to identify, quantify, and remediate customs valuation exposure in complex multi-tier sourcing structure. - Experience with U.S. free trade agreement programs, including CAFTA-DR, USMCA, short supply provisions, AGOA, rules of origin analysis, and related documentation requirements. - General knowledge of Customs-Trade Partnership Against Terrorism (CTPAT). - Experience building, assessing, or strengthening internal controls, preferably in an environment with audit, remediation, or public-company readiness expectations. - Demonstrated ability to lead cross-functional work and project management across Legal, Supply Chain, Logistics, Finance, Sourcing and Design, and external partners. - Strong judgment, analytical capability, and problem-solving skills, with the ability to balance compliance rigor and business practicality. - Excellent written and verbal communication skills, including the ability to translate technical customs requirements into clear guidance for business stakeholders. - Strong analytical and problem-solving abilities; comfortable working with data, identifying gaps, and challenging assumptions. - High degree of professional judgment, integrity, and discretion in handling sensitive information and balancing risk with business practicality. - Demonstrated ability to build trust and influence across functions and levels, including senior leadership and external partners. - Licensed Customs Broker credential strongly preferred. Experience in retail, sourcing, apparel, or other high-volume import environments is strongly preferred. Requirements - Ability to sit and work at a computer keyboard for extended periods of time. - Ability to stoop, kneel, bend at the waist, and reach daily. - Able to lift and move up to 25 pounds occasionally. - Must utilize visual acuity, speech and hearing, hand and eye coordination and manual dexterity necessary to operate a computer and office equipment. - Hours regularly 40 hours per week, as work dictates, from a remote U.S. location. Periodic travel to corporate offices may be required. Benefits - This role is eligible for healthcare including medical, dental and vision. - Retirement savings (401k with a company match). - Income protection programs such as life, accident and disability insurance. - Paid time off for sick leave, vacation, bereavement, jury duty, and holidays. - Wellbeing program. - Commuter, adoption assistance, education assistance, legal services, and employee merchandise discounts. Work-Life Balance - Meeting-Free Fridays (encouraged) | so you can catch up on work and self-development. - Summer Fridays | from Memorial Day to Labor Day so you can enjoy a head-start to the weekend. - Holiday Early Departure | close out early the business day before a company observed holiday. The starting salary for this position is $100,000–130,000. Actual compensation within this range will be determined based on factors such as skills, experience, and qualifications. Over time, and subject to performance, tenure, and evolving responsibilities, total compensation for this role may grow to as much as $160,000. Other compensation may include a 10% Annual Incentive Plan (AIP) bonus paid out according to policy. Base pay information is based on market location and may be subject to prevailing wage laws, if applicable.

United States
$100K - $130K / year
SD Solutions logo

Junior GRC/ Compliance Analyst

SD Solutions

Create exceptional products with passionate people

Compliance8 days ago
Full TimeRemoteTeam 201-500H1B No Sponsor

Role Description On behalf of FinTech Client #1, SD Solutions is looking for a Junior GRC/ Compliance Analyst to step onto a fintech unicorn rocketship! This role presents an exciting opportunity to work in a fast-growing company with great opportunities to make a difference. You will support Tipalti's third-party risk management program, helping to assess, monitor, and manage risks associated with vendors and external service providers. You'll work closely with the GRC Manager to mature and operationalize the TPRM function. - Conduct vendor onboarding risk assessments (security questionnaires, due diligence reviews) - Maintain and update the vendor risk register and assessment pipeline - Review vendor SOC 2 reports, security documentation, and certifications - Track vendor risk findings and follow up on remediation commitments - Support periodic vendor reassessments based on risk tier - Coordinate with internal stakeholders (Procurement, Legal, IT) on vendor reviews - Assist in building and improving TPRM workflows and documentation - Manage assessments within the GRC platform (Drata) Qualifications - Basic understanding of information security concepts (CIA triad, access control, data classification) - Familiarity with compliance frameworks (ISO 27001, SOC 2) - Strong organizational and communication skills - Ability to read and interpret vendor security documentation - Attention to detail and structured thinking Requirements - Experience with GRC tools (Drata, Vendict, or similar) - Basic knowledge of data privacy regulations (GDPR, CCPA) - Any security certification progress (CompTIA Security+, ISO 27001 Foundation) Benefits - End-to-end TPRM lifecycle in a high-growth fintech environment - Hands-on experience with ISO 27001 and SOC 2 operational controls - GRC tooling (Drata) and vendor risk workflows Company Description A well-funded fintech unicorn operating a cloud-based global payables automation platform. Enterprises use it to streamline supplier payments, mass payouts, and AP operations across international markets — replacing manual finance processes with automated, audit-ready workflows.

Georgia
Compliance8 days ago
Full TimeRemoteTeam 501-1,000Since 2018H1B Sponsor

• Own fraud, collections, and back-office compliance for Mission Lane's credit card business • Be the embedded compliance authority across Mission Lane's fraud, collections, and back-office servicing operations • Own day-to-day escalations from fraud and collections • Run testing and monitoring against critical controls • Proactively identify gaps and develop guidance on high-risk compliance topics • Partner with the business to strengthen programs and elevate the expertise of the compliance team

United States
$129K - $140K / year
Charlie Health logo

GRC Engineer

Charlie Health

Personalized mental health treatment for teens, young adults & families in crisis.

Compliance8 days ago
Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Transform Charlie Health’s compliance, risk and control programs into automated, measurable and continuously monitored systems • Partner closely with Information Security, IT Engineering, Compliance, Legal, Engineering and business teams to translate regulatory, contractual and risk requirements into automated controls, evidence pipelines, dashboards, workflows and continuous control monitoring • Help move Charlie Health from manual, point-in-time compliance activities toward scalable, system-driven assurance • Ensure that controls protecting patient, clinician, employee and company data are well-designed, consistently operated and supported by reliable evidence • Design, build and operate automated controls that support HIPAA, SOC 2, NIST, ISO 27001 and other applicable frameworks • Build and maintain continuous control monitoring capabilities across identity, endpoints, cloud, SaaS platforms, security tools and business systems • Automate audit evidence collection across various systems

United States
$130K - $175K / year