[Remote] Lead Compliance Analyst
Note: The job is a remote job and is open to candidates in USA. HubSpot is seeking a Lead Compliance Analyst to play a critical role in maintaining and scaling our Security Compliance program. This role focuses on ensuring internal controls and processes can grow alongside our Product and evolve to meet the rapidly changing risk landscape posed by agentic AI.
Responsibilities
- Oversee the third-party audit execution lifecycle, including evidence gathering, walkthroughs, and stakeholder management
- Lead compliance onboarding for new products, features, and major engineering changes
- Review control design and operational readiness prior to go-live
- Provide clear, actionable guidance to teams on control expectations and evidence requirements
- Lead implementation for new and evolving compliance obligations
- Work directly with Engineering, Product, and Finance partners to support remediation of control gaps
- Validate corrective actions and ensure issues are fully resolved
- Track recurring issues and surface systemic risks to leadership
- Identify opportunities to reduce manual effort through better design, standardization, and automation
- Partner with Security Automation and Engineering teams to support programmatic compliance checks over time
Skills
- Extensive demonstrated experience in IT Compliance or Security GRC, preferably in a SaaS or technology-driven environment
- Strong hands-on experience with: SOC 1 / SOC 2 or ISO 27001, Control automation or GRC engineering, Control design and readiness assessments, Issue remediation and audit support
- Familiarity with: SOX 404, HIPAA and/or PCI, ISO 42001, NIST AI RMF, AIUC-1, or other AI and agentic control frameworks
- Experience partnering with Product and Engineering teams on compliance matters
- Ability to independently own complex compliance initiatives end-to-end
- Strong written and verbal communication skills
- Comfort working in fast-paced, evolving technical environments
- Certifications such as CISA, CRISC, CISSP, or equivalent preferred
Benefits
- On-target commission for employees in eligible roles
- Annual bonus targets under HubSpot’s bonus plan for eligible roles
- Participate in HubSpot’s equity plan to receive restricted stock units (RSUs) for some roles
- Some roles may also be eligible for overtime pay
- Individual compensation packages are tailored to your skills, experience, qualifications, and other job-related reasons
- Benefits are also an important piece of your total compensation package
- Remote work option - USA
- In-person onboarding at a regional HubSpot office for Engineering team members
- In-person events such as Product Group Summit and other gatherings for broader Product team members
- Accommodation for disabilities or travel limitations upon request
Company Overview
Company H1B Sponsorship