Security Compliance Specialist
United States
Engineering – Infrastructure & DevOps Engineering /
Full-time /
Remote
About Sayari:
Sayari is a risk intelligence provider that equips the public and private sectors with immediate visibility into complex commercial relationships by delivering the largest commercially available collection of corporate and trade data from over 250 jurisdictions worldwide. Sayari's solutions enable risk resilience, mission-critical investigations, and better economic decisions.
Headquartered in Washington, D.C., its solutions are trusted by Fortune 500 companies, financial institutions, and government agencies, and are used globally by thousands of users in over 35 countries. Funded by world-class investors, with a strategic $228 million investment by TPG Inc. (NASDAQ: TPG) in 2024, Sayari has been recognized by the Inc. 5000 and the Deloitte Technology Fast 500 as one of the fastest growing private companies in the United States and was featured as one of Inc.’s “Best Workplaces” for 2025.
POSITION DESCRIPTION
Sayari’s flagship product, Sayari Graph, provides instant access to structured global business information from hundreds of millions of corporate, legal, and trade records. We adhere to US and relevant international laws and believe that publicly available information is inherently public. As a member of Sayari's Security team you will ensure compliance with information security and data privacy related obligations imposed by laws, regulations, standards, contracts, and policies with a focus on those applicable in the US. This role will be instrumental in developing and implementing data protection standards and adoption requirements across the organization.
You will work with our Data, Product, and Software Engineering teams to understand how our products are built, maintained, and secured. With this knowledge, you’ll analyze US regulatory frameworks and standards, such as FedRAMP requirements, CMMC 2.0 mandates under DFARS, and SOC 2 guidelines, to determine actionable steps required to ensure compliance. You will enforce data governance practices, inquire legal counsel when necessary, and prepare actionable reports concerning compliance gaps.
You will continuously advise on information security and privacy compliance matters, assist with collecting audit evidence of implemented compliance controls, and assist with the drafting, review, and implementation of information security and privacy documentation.
JOB RESPONSIBILITIES
- Perform risk assessments based on industry standard frameworks and communicate results to influence the roadmap
- Continuously monitor and stay informed of current and upcoming security regulations, standards, and applicable frameworks
- Collaborate with IT as necessary to streamline all aspects of compliance processes via system integrations, automation, and AI
- Prepare, plan, and coordinate third-party security compliance audits including evidence collection
- Respond to customer security questionnaires
- Facilitate independent security assessments and coordinate third-party penetration tests
- Promote a culture of security & data privacy awareness throughout the organization
- Help maintain Sayari's security awareness programs and ensure engineering teams stay informed of security threats and best practices
- Management of the ISMS with high attention to detail and exceptional organization
- Manage relationships with vendors and audit their security program
Required SKILLS & EXPERIENCE
- Minimum of 6 years of professional experience participating in information security audits including SOC 2 and FedRAMP
- Thorough familiarity with NIST 800-53, NIST 800-171, and NIST Cybersecurity Framework
- Experience responding to customer questionnaires regarding information security and data privacy
- Experience reviewing technical information and data privacy requirements from customers, vendors, and government regulations
- Experience performing internal security and data privacy audits to assess security maturity, communicate findings well in advance of external audits, and ensure responsible departments follow through with improvements
- Experience using a continuous compliance monitoring tool such as Vanta, Drata, etc. to track compliance with multiple frameworks and regulations
- Ability to comprehend penetration tests, vulnerability scan results, and track progress of remediations
- Excellent organization and professional writing capability with strong communication and presentation skills
$115,000 - $125,000 a year
The target base salary for this position is $115,000 - $125,000 plus bonus and equity. Final offer amounts are determined by multiple factors including location, local market variances, candidate experience and expertise, internal peer equity, and may vary from the amounts listed above.
Benefits:
· 100% fully paid medical, vision, and dental for employees and their dependents
· Generous time off; we observe all US federal holidays, close our office for a winter break (12/24-12/31), in addition to granting 18 PTO days and 10 sick days
· Outstanding compensation package; competitive commissions for revenue roles and quarterly bonuses for non-revenue positions
· A strong commitment to diversity, equity, and inclusion
· Eligibility to participate in additional benefits such as 401k match up to 5%, 100% paid life insurance (up to $100,000 coverage),, and parental leave
· A collaborative and positive culture - your team will be as smart and driven as you
· Limitless growth and learning opportunities
Sayari is an equal opportunity employer and strongly encourages diverse candidates to apply. We believe diversity and inclusion mean our team members should reflect the diversity of the United States. No employee or applicant will face discrimination or harassment based on race, color, ethnicity, religion, age, gender, gender identity or expression, sexual orientation, disability status, veteran status, genetics, or political affiliation. We strongly encourage applicants of all backgrounds to apply.
