Compliance Analyst

Who We Are

Vultr is on a mission to make high-performance cloud infrastructure easy to use, affordable, and locally accessible for enterprises and AI innovators around the world.  With 32 cloud data center locations around the world, Vultr is trusted by hundreds of thousands of active customers across 185 countries for its flexible, scalable, global Cloud Compute, Cloud GPU, Bare Metal, and Cloud Storage solutions. Founded by David Aninowsky and self-funded for over a decade, Vultr has grown to become the world’s largest privately-held cloud infrastructure company.

Vultr Cares

• Excellent Medical Benefits w/ 100% company-paid premiums for employee only plan + 100% company-paid dental & vision premiums
• 401(k) plan that matches 100% up to 4% with immediate vesting
• Professional Development Reimbursement of $2,500 each year
• 11 Holidays + Paid Time Off Accrual + Rollover Plan + take your birthday off
• Commitment matters to Vultr! Increased PTO at 3 year & 10 year anniversary + 1 month paid sabbatical every 5 years + Anniversary Bonus each year
• $500 first year remote office setup + $400 each following year for new equipment
• Internet reimbursement up to $75 per month
• Gym membership reimbursement up to $50 per month
• Company-paid Wellable subscription

Join Vultr

Vultr is seeking a Compliance Analyst reporting to the Director of GRC who is able to own internal controls and collaborate closely with various stakeholders to support and manage compliance projects and its processes. This role requires collaborating with a global team across US time zones. You will help continuously mature the compliance program, identify and address gaps, and lead internal and external compliance audits in concert with business stakeholders (Engineering, GRC, People Operations, Product and Technical teams)

What To Expect

• Coordinate and manage compliance projects and processes serving as both the project lead and the control owner for various compliance initiatives.
• Apply risk management knowledge to identify program deficiencies, assess gaps and design and implement controls.
• Analyze security controls on cloud based systems, perform gap assessments, and map compliance requirements for various frameworks but not limited to SOC 2+, ISO 27001, ISO 27017, ISO 27018, PCI DSS.
• Provide subject matter expertise for all things compliance, monitoring performance, testing effectiveness of controls, and implementing improvements.
• Collaborate effectively with cross-functional teams, aligning stakeholders on decisions and reporting requirements and findings to stakeholders and leadership

Our ideal candidate will have 3 - 5 years of experience in:

• Familiarity with industry accepted compliance policies, frameworks, and standards
• A good understanding of compliance programs, risk assessment methodologies, and operation and verification of internal controls.
• Ability to analyze business processes, identify risks and dependencies, and propose solutions.
• Ability to collaborate and influence cross-functional teams, executive management, and regulators.
• Excellent verbal and written communication skills; effectively write, edit and collaborate, including emails, documentation and slide presentations.
• Be a collaborative team player with the ability to execute on independent projects.
• Bonus - Though not required:
• If you have previous experience working in GRC for a Cloud Hosting Provider
• If you have experience with GRC and/or Privacy platforms such as AuditBoard, Drata, or One Trust

Vultr is committed to an inclusive workforce where diversity is celebrated and supported. All employment decisions at Vultr are based on business needs, job requirements, and individual qualifications.

Vultr regards the lawful and correct use of personal information as important to the accomplishment of our objectives, to the success of our operations and to maintaining confidence between those with whom we deal and ourselves. As such the use of various key privacy controls enables Vultr’s treatment of personal information to meet current regulatory guidelines and laws.

Workforce members have the right under US state law where and when applicable and certain other privacy and data protection laws, as applicable, to: fair and equal treatment, knowing what personal data we gather and retain, for what purpose, and the ability to access and/or delete such data. You also have the right to opt out of communications from Vultr and approved third- parties at any time.