Facebook pixel

Risk and Compliance Analyst
Posted on 6/28/2022
New York, NY, USA
Experience Level
Desired Skills
  • 2+ years of experience performing and running audits, certification programs or control assessments
  • Big 4 experience or compliance risk advisory experience preferred
  • CISA, CIA, CISSP or other related certifications a plus
  • Strong knowledge of and experience in security risk management and with frameworks including related regulatory compliance requirements (e.g. SOC 1/2, ISO 27001, PCI, HITRUST) required
  • Experience assessing security, compliance, and privacy controls across a variety of technical and organizational environments
  • Familiarity with distributed applications on cloud infrastructure and a broad range of technical concepts relevant to cloud computing environments including logical access controls, agile development, information security, network security, privacy, etc
  • Ability to clearly communicate compliance requirements to engineering teams and the ability to interpret technical implementations and communicate them to to external auditors
  • Comfortable planning, executing, and delivering on multiple long-term projects with external dependencies in tandem
  • Support internal and external security assessments of new and existing Palantir services and infrastructure including operational, regulatory, and contractual requirements (e.g. SOC 2, ISO 27001, ISO 9001)
  • Develop and maintain a technical understanding of Palantir's control implementations and articulate these to various audiences, including internal and external auditors
  • Partner with engineers and various internal teams to interpret and map compliance requirements to controls implementations
  • Improve and automate controls and documentation for internal systems, processes, and policies
  • Guide technical and operational decision-making towards future product offerings and efficient organizational processes

1,001-5,000 employees

Software for human-driven analysis of real-world data
Company Overview
Palantir is committed to helping organizations get value out of their data while protecting sensitive information from misuse and abuse.
  • Transparency
  • Take-What-You-Need Time Off Policy
  • Family Support
  • Community
  • Equity
  • Mental Health and Wellbeing
  • Healthcare