Position Overview:Entrust is seeking a highly skilled Senior Security Compliance Analyst to lead and sustain compliance for multiple PCI DSS environments while supporting the maturity and execution of our SOC 2 program. This role is responsible for designing and executing continuous compliance monitoring activities, identifying gaps and leading associated remediation efforts, planning and leading third-party audits, and measuring control effectiveness across cloud-based, on-prem and hybrid environments. The ideal candidate brings deep PCI DSS expertise, strong SOC 2 familiarity, and modern GRC experience that enable scalable, automated, and evidence-driven compliance operations.
This position partners closely with Security, Engineering, Product, and third-party providers to ensure controls are designed effectively, operating consistently, and aligned to business, statutory and regulatory expectations.
How You Will Make an Impact:Lead and support end-to-end compliance efforts across multiple environments, including readiness assessments, audits, and continuous monitoring activities to ensure sustained security posture and audit readiness. Responsibilities include, but are not limited to:
- Leading PCI DSS compliance-related activities and certification;
- Supporting the evolution and execution of the SOC 2 program, including control design, testing, and evidence collection;
- Maintaining required evidence artifacts and ensuring traceability of evidence;
- Interpreting and operationalizing security and compliance requirements into actionable control activities for engineering and operations;
- Serving as SME for PCI DSS and SOC 2 compliance, advising internal teams and customers;
- Partnering with control owners to ensure controls meet PCI DSS requirements and Trust Services Criteria (Security, Availability, Confidentiality, etc.);
- Supporting external audits by preparing evidence, responding to auditor requests, coordinating audit activities, and tracking remediation;
- Driving coordination with third parties (e.g., service providers, hosting partners) to ensure shared control alignment;
- Ensuring audit readiness through continuous proactive gap assessments and control testing throughout the year;
- Identifying, assessing, and communicating compliance and security risks to stakeholders;
- Identifying, tracking, and driving closure of audit findings and control deficiencies; and
- Contributing to the development and maintenance of security policies, standards, and procedures.
Basic Qualifications:- 5+ years in security compliance, audit, or GRC with a strong understanding of administrative, technical, and physical controls, including how they support one another
- Hands-on technical and audit experience with PCI DSS and SOC 2 compliance
- Ability to work across multiple time zones with virtual global teams
- Strong technical understanding of:
- Cloud environments and shared responsibility models
- Access control, change management, logging and altering, and vulnerability management and other security domains
- Experience working in SaaS or cloud-native environments
- Experience working cross-functionally with engineering and infrastructure teams
- Must be a US citizen
Preferred Qualifications: - Experience supporting multiple compliance frameworks (PCI DSS, PCI CP, SOC 2, FedRAMP, ISO 27001, etc.)
- Experience with modern GRC platforms and control automation
- Familiarity with continuous compliance / continuous monitoring models
- Certifications such as: CISSP, CISA, CISM, CRISC, PCI ISA/QSA/PCIP (preferred but not required)
Where You Will Be: Open to U.S.-based candidates and will be fully remote.
Compensation Range:The anticipated starting base pay for this position is: $119,078-$174,648 per year (in the primary posting location). Actual compensation will be determined based on geographic location, education, skills and experience. This position is also eligible for the company's discretionary annual incentive plan. In addition to your pay, Entrust offers eligible colleagues and their dependents comprehensive health and well-being programs which include medical, vision, dental, a generous 401(k) matching contribution, life and disability insurance, mental health coaching, virtual fitness programs, paid personal time off plus 12 paid holidays, parental leave and education reimbursement. Please speak with the recruiter for more details. Note: Benefit and Compensation programs are subject to eligibility requirements and other terms of the applicable plan or program. Entrust has the right to end, suspend or amend any of its plans at any time in whole or in part.
Recruiter:James Beck