Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
Job description At Drata, we help companies earn and keep the trust of their users, customers, partners, and prospects. Being Customer-Obsessed keeps the people we serve at the center of our work. Competitive Fire drives us to push ourselves harder than anyone else. Diversity brings unique perspectives that lead to better solutions. Automation First ensures we save time and money by making efficiency a priority. At Drata, we're not just building software - we're building a mindset. Immediate impact. Stay Mission-Driven (Customer‑Obsessed): We're an award-winning, mission-driven team of 600+ people worldwide, united by a culture that values trust, speed, and continuous growth. Hear the Voice of the
Team:
Explore our "Life at Drata" page for employee testimonials on our collaborative and the growth opportunities available. LinkedIn - follow us for company updates, employee stories, and career news. As a Senior Compliance Advisor at Drata, you are a customer-facing information security and compliance expert for the world's most advanced security and compliance automation platform. Senior Compliance Advisors execute within the Professional Services function of the Customer Success organization at Drata and work closely with all teams to drive fast and smooth audit readiness programs, create and deliver best practices in meeting requirements for control and privacy frameworks, and advocate on behalf of customers' needs for a rapidly growing platform. You'll build trust and empathy with Drata's customers as you advise them toward a continuous and self-sufficient security, risk and compliance posture. Advise customers on information security policies, control evidence, and overall audit readiness as they prepare for audits and assessments against
SOC 2, ISO 27001/27002, HIPAA, PCI, NIST
800-171, CMMC, FedRAMP, GDPR, CCPA, and related frameworks. Lead end-to-end control mapping and cross-framework crosswalk analysis, aligning customer custom controls and audit evidence request lists (IRLs) to the Drata Control Framework (DCF). Serve as the primary compliance expert in customer-facing meetings, via email and executable work for customers, and to members of our Customer Success teams. Lead the development and present on GRC industry best-practices and on common compliance questions received from customers for both external and internal audiences. Partner with Customer Success and Account Managers in providing current customers with additional compliance advisory services as needed. Engage with the Sales team, as needed, with responding to prospective customer questions. Host customer-facing webinars to answer questions on audit and GRC best practices Review marketing articles and blog posts for accuracy as needed. Must have 4 - 6 years of experience in performing audits and assessments for compliance programs based on SOC 2 and
ISO 27001/27002
The ideal candidate will have exposure and experience in additional frameworks such as HIPAA, PCI, GDPR, CMMC, FedRAMP, CCPA, or other major compliance and controls regulations and framework Strong background and understanding of GRC (Governance, Risk, and Compliance) programs, processes, functions, and operational teams, and helping organizations design, build, and operate their risk, security, and compliance programs hands-on experience with a GRC automation platform is a plus. Proven self-starter able to identify priorities, take ownership of work, and learn and advise on new compliance frameworks quickly. An ability to develop and cultivate positive relationships with customers - make their day by providing the best possible guidance and customer experience Desire to work at a rapidly growing startup with a team-player mindset, building and creating something from the ground up. Light technical fluency to accelerate evidence automation and customer enablement — comfort reading and interpreting API responses, working familiarity with at least one major cloud provider (AWS, GCP, or Azure) and its core security/IAM services, and/or basic scripting (Python, PowerShell, or SQL) to streamline repetitive evidence-collection tasks. We provide stock equity to ensure that as the company grows, you share directly in that success. Equity gives every employee a sense of ownership and the opportunity to celebrate our wins together—because your contributions don't just support our progress; they help drive our collective success.
Health & Wellness:
Up to 100% employer-paid premiums for medical, dental, and vision coverage for employees and their dependents, along with comprehensive wellness benefits and healthcare concierge services designed to support your needs beyond traditional insurance.
Financial Well-being:
A comprehensive suite of financial benefits, including a 401(k) plan, company-paid life and disability insurance, tax-advantaged spending accounts, and a range of discounted voluntary offerings to help you customize and strengthen your overall financial position. We want to support you in life's most important moments, so we offer a paid Parental Leave policy, after six months of employment. Employees also receive access to Kindbody fertility and family-building benefits and dedicated leave specialists who help guide you through the entire process. Generous annual stipends for both professional and personal development, empowering you to invest in your continued growth. Drata offers a flexible vacation policy, paid holidays, and other perks to recharge. This role will receive a competitive base salary, variable compensation, benefits, and/or stock, typically in the form of Restricted Stock Units (RSUs). The applicable range of On-Target Earnings (OTE) for each US-based role is based on where the employee works and is aligned to one of 3 tiers based on the cost of labor for that geographic area.