Skip to main content
RemoteCanada - Ontario
Req IDPR3354

Compliance Analyst II, GRC, Product Line Readiness

Compliance Analyst II -  Governance, Risk and Compliance 

About the Role 

We are looking for a cloud and DevOps savvy GRC Compliance Analyst II to support compliance enablement across  HashiCorp product lines. This role involves embedding within the day-to-day of HashiCorp product lines to enable compliance by providing real-time readiness evaluation, control scoping, and the ability to advise on remediation of gaps, if applicable, to ensure products meet compliance requirements. The ideal candidate will have experience collaborating with cross-functional teams to embed compliance controls into agile and DevOps processes, providing continuous guidance and oversight throughout the product development lifecycle. We are looking for a self-motivated individual who thrives in a fast-paced environment, can seamlessly drive efforts across multiple projects, working with various stakeholders. 

Security at Hashicorp is a remote team. While prior experience working remotely isn’t required, we are looking for team members who can perform well given a high level of independence and autonomy. 

In this role, your responsibilities will include: 

  • Work closely with product development teams to integrate security and compliance requirements into the product lifecycle, ensuring that all products are built with compliance in mind from the ground up.
  • Conduct real-time readiness assessments of products and features during development, identifying potential compliance risks and providing actionable recommendations to address gaps.
  • Define the scope of compliance controls and requirements for new and existing products, ensuring that all relevant aspects of the product are covered.
  • Provide ongoing guidance to product teams on security controls and industry best practices, helping them navigate complex compliance landscapes.
  • Leverage your technical expertise and deep understanding of the product to effectively collaborate with the rest of the GRC team, ensuring alignment and accuracy of understanding during audits. Lead internal and external audits related to product compliance, ensuring that all documentation and controls are in place and up to date.
  • Collaborate with cross-functional teams, including product managers and engineers, to embed security controls into development and operational processes. 
  • Help develop and deliver training on security and compliance requirements and control owner responsibilities.
  • Identify assets utilized in the services/products that impact compliance (cloud accounts, repositories, Github teams, etc.) and ensure they are documented in the scope/boundaries of the compliance program including updates, removals and additions.
  • Assisting with internal audits, control testing and external audits
  • Work with Engineering teams to identify automation opportunities of manual tasks, such as continuous monitor of controls and audit evidence collection
  • Support other GRC work as required


Must have qualifications

  • Minimum of 2-5 years of related professional compliance and controls program experience
  • Previous experience in a cloud environment, preferably AWS and/or Azure
  • Experience with modern DevOps patterns and practices, with a strong understanding of how to embed security controls into these processes.
  • Advanced level knowledge either controls and control frameworks 
  • Comfortable working with both deeply technical and non-technical resources 
  • Flexible in daily hours (e.g. willingness to work longer hours during end of quarter ,peak periods, and audit) 
  • Highly responsive 
  • Ability to prioritize and track multiple projects and tasks in parallel 
  • Excellent communication and collaboration skills. Ability to work effectively with cross-functional teams and provide clear guidance on complex compliance issues.

Desired Qualifications

  • Experience working in a large, multi-cloud environment
  • Deep understanding of common security compliance frameworks, attestations and certifications
  • Understanding of infrastructure as code and related controls
  • Previous experience at a technology or SaaS company in a similar role
  • Existing experience with HashiCorp products 
  • Experience working with OSCAL

#LI-REMOTE

Life at Hashicorp

Life at HashiCorp

HashiCorp is driven by our people and our principles which have been the foundation of everything we do since the company was founded in 2012. Join us on our journey as we work to support the world's most innovative companies as they transition to cloud and multi-cloud infrastructure through simple yet powerful workflows and automation.

About HashiCorp

At HashiCorp, we build the infrastructure that enables innovation.  Our suite of multi-cloud infrastructure automation products are the underpinnings of the largest enterprises in the world, who rely on our solutions to provision, secure, connect, and run their critical applications to deliver crucial services, communications tools, and entertainment platforms to the world. We're building a once-in-a-generation infrastructure company with a unique approach rather than focusing on specific technologies, and we build products and solutions that support real-world workflows spanning the multiple cloud environments that nearly every organization worldwide is using today. 

HashiCorp is proud to be an Equal Employment Opportunity employer. We are committed to providing equal employment opportunities to qualified applicants and do not discriminate on the basis of race, color, ancestry, religion, sex, pregnancy, gender, gender identity, gender expression, sexual orientation, national origin, age, marital status, genetic information, disability, protected veteran status or any other characteristic protected by federal, state, or local laws. We also consider qualified applicants with arrest and conviction records consistent with the San Francisco Fair Chance Ordinance, the Los Angeles Fair Chance Ordinance, and other applicable state or local laws.

HashiCorp is committed to providing reasonable accommodations to qualified individuals with disabilities in our job application procedures. If you need assistance or an accommodation due to a disability, please reach out to benefits@hashicorp.com

We comply with all laws and regulations set forth in the following posters:

Know Your Rights: Workplace Discrimination is Illegal

EEO is the Law Supplement

Pay Transparency Non-Discrimination

Benefits at HashiCorp

Note: some benefits may differ from one country to another.

View all benefits

Manage cookies

HashiCorp uses data collected by cookies and JavaScript libraries to improve your browsing experience, analyze site traffic, and increase the overall performance of our site. By using our website, you’re agreeing to our Privacy Policy and Cookie Policy.

The categories below outline which companies and tools we use for collecting data. To opt out of a category of data collection, set the toggle to “Off” and save your preferences.