Sr. Compliance Analyst II

The Sr. Compliance Analyst II is a subject matter expert and leader in compliance, possessing deep knowledge across multiple frameworks and the ability to drive impactful initiatives. This role requires strong technical expertise, communication skills, and a collaborative approach to influence stakeholders and champion security best practices across the organization. The Sr. Compliance Analyst II will demonstrate advanced analytical and problem-solving skills, a commitment to continuous improvement, and the ability to effectively manage complex projects and mentor others.

You will report to our Director, Information Security Governance, Risk and Compliance located in our Bellevue, WA office, or you may work remotely from anywhere in the US where Smartsheet is a registered employer.

You Will:

• Independently interpret and apply controls from multiple complex compliance frameworks (e.g., FedRAMP, HIPAA, ISO 27001, NIST 800-53, SOC 2).
• Develop technical standards and specifications for control implementation.
• Define scope and assess compliance, challenging control owner assertions when necessary.
• Implement controls that optimize for risk reduction, efficiency, and automation.
• Own and lead significant projects end-to-end, collaborating with cross-functional teams.
• Contribute to architectural and design discussions, recommending impactful initiatives.
• Define and prioritize projects, ensuring alignment with company goals.
• Mentor team members on compliance frameworks, best practices, and trade-offs.
• Contribute to the hiring process, assessing candidates' compliance skills.
• Champion customer security needs and communicate their impact to internal teams.
• Build consensus and drive adoption of security initiatives across the organization.
• Contribute to initiatives that improve security practices across various teams.
• Effectively communicate standards and best practices throughout the organization.
• Mentor others on design, processes, and standards.
• Prioritize initiatives based on company priorities and risk assessments.

You Have:

• 5+ years of experience in IT compliance, information security, or related fields.
• Bachelor's degree in a related field or equivalent experience.
• An understanding of the dependencies and impact of compliance initiatives on other business functions.
• Extensive knowledge of multiple compliance frameworks and industry best practices.
• Strong technical, analytical, problem-solving, communication, and project management skills.
• Experience effectively communicating compliance concepts to diverse audiences.
• Ability to work independently and collaboratively, leading and influencing others.