Security Analyst, Compliance

Were in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here you lead with innovative thinking grow along with us and join the smartest team in the industry.

This type of workwork that changes the worldis what the tech industry was founded on. So if youre ready to seize the endless opportunities and leave your mark come join us.

THE ROLE

At Everpure Information Security is a foundational business priority. The Security team is a core engineering-focused group deeply embedded in ensuring the security of our corporate environment and Everpure services. We are dedicated to staying on the cutting edge of security technology and proactively addressing the evolving threat landscape.

We are seeking a proactive detail-oriented Security Analyst Complianceto independently run compliance certification programs with minimal supervision and actively support the broader compliance efforts of the team.

WHAT YOULL DO

• Lead a security certification program vertical (e.g. SOC 2 ISO 27001 FedRAMP Common Criteria) end to end with minimal supervision ensuring a successful outcome.
• Support other certification program verticals to streamline audit certification cycles.
• Collaborate and maintain communication with cross-functional teams (e.g. Engineering Legal Product) and external auditors/stakeholders to ensure smooth project execution and successful outcomes.
• Assist and support internal teams through independent assessments and audits. Translate complex security and compliance controls into actionable technical solutions and implementation strategies.
• Develop track and report on key compliance metrics (KCMs) continuously driving process improvements to align with evolving industry standards and best practices.
• Author and maintain comprehensive compliance documentation including control narratives audit evidence and supporting materials ensuring they are accurate up-to-date and audit-ready.
• Independently drive on recurring tasks and events such as access reviews and vulnerability scanning across multiple business units with differing scopes.
• We are primarily an in-office environment and therefore you will be expected to work from the Lehi UT office in compliance with Pures policies unless you are on PTO or work travel or other approved leave.

WHAT YOU BRING

• 5 years of experience in IT audit risk management or IT compliance roles with demonstrated experience running compliance certification programs and previous audit experience.
• In-depth understanding of security controls and key compliance frameworks (e.g. NIST SOC2 ISO 27001 FedRAMP FIPS Common Criteria) as well as cloud platforms (e.g. AWS Azure GCP etc.)
• Proven experience in designing technical controls to satisfy compliance requirements.
• Strong written and verbal communication skills with the ability to engage effectively with both internal teams and external auditors.
• Ability to identify and recommend tools processes and software to improve and automate compliance practices.
• Security Operations or Engineering background preferred but not required
• Relevant certifications such as CISSP CISA or CISM ISO/IEC 27001 Lead Implementer or Lead Auditor are preferred but not required.

#LI-ONSITE

#LI-TH3

WHAT YOU CAN EXPECT FROM US:

• Innovation: We celebrate those who think critically like a challenge and aspire to be trailblazers.
• Growth: We give you the space and support to grow along with us and to contribute to something meaningful. We have been named Fortunes Best Workplaces in Technology Fortunes Best Workplaces in the Bay Area and certified as a Great Place to Work!
• Team: We build each other up and set aside ego for the greater good.

And because we understand the value of bringing your full and best self to work we offer a variety of perks to manage a healthy balance including flexible time off wellness resources and company-sponsored team events. Check out for more information.

ACCOMMODATIONS AND ACCESSIBILITY:

Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this contact us at if youre invited to an interview.

OUR COMMITMENT TO A STRONG AND INCLUSIVE TEAM:

Were forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isnt just accepted but embraced. Thats why we are committed to fostering the growth and development of every person cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership.

Everpure is proud to be an equal opportunity employer. We do not discriminate based upon race religion color national origin sex (including pregnancy childbirth or related medical conditions) sexual orientation gender gender identity gender expression transgender status sexual stereotypes age status as a protected veteran status as an individual with a disability or any other characteristic legally protected by the laws of the jurisdiction in which you are being considered for hire.

Join us and bring your best.

Bring your bold.

Pure and simple.