Senior IT Compliance Analyst

About Us:

SailPoint is the leader in Identity Security for the enterprise. Were committed to protecting organizations from an ever-evolving threat landscape and helping them govern every single identity and its access. SailPoint has been consistently rated one of the best places to work in Austin over the past 15 years!

Position Overview:

We are seeking a highly motivated and experienced Sr. IT Compliance Analyst to join our growing team. The ideal candidate will have a strong background in IT compliance and a deep understanding of various regulatory frameworks including NIST 800-53 ISO 27001 SOX GDPR and this role youll blend regulatory compliance expertise with the implementation of access controls ensuring our systems and processes meet the highest standards of security and assurance. Expect to work cross-functionally within IT and across our Cloud Operations Cybersecurity Product and Engineering teams to maintain trust and

enable secure scalable growth.

Key Responsibilities:

• Compliance Framework Management: Implement maintain and continually improve our IT compliance programs with a focus on NIST 800-53 ISO 27001 SOX GDPR and FedRAMP.

• Risk Assessments: Conduct comprehensive risk assessments to identify potential compliance gaps and vulnerabilities. Develop and implement remediation plans to address identified risks.

• Control Testing & Auditing: Design and execute control testing procedures to validate the effectiveness of our IT controls. Liaise with internal and external auditors to facilitate audits and ensure timely resolution of audit findings.

• FedRAMP Compliance: Manage the FedRAMP authorization process including the development and maintenance of System Security Plans (SSPs) and continuous monitoring activities.

• SOX Compliance: Oversee IT General Controls (ITGCs) for Sarbanes-Oxley (SOX) compliance including access controls change management and IT operations.

• ISO 27001 Certification:Maintain and enhance our Information Security Management System (ISMS) to ensure ongoing compliance with ISO 27001 standards.

• GDPR and Data Privacy: Ensure adherence to GDPR and other global data privacy regulations. Conduct Data Protection Impact Assessments (DPIAs) and support privacy-by-design principles.

• Policy and Procedure Development: Develop and maintain IT policies standards and procedures to support compliance requirements.

• Reporting and Documentation: Prepare and present compliance reports to management. Maintain accurate and comprehensive documentation of compliance policies and standards.

• Training and Awareness:Promote a culture of compliance by providing training and awareness programs to employees.

Qualifications:

• 4 years of experience in an IT compliance IT audit or risk management role.

• In-depth knowledge and hands-on experience with the following frameworks:

  • NIST 800-53

  • ISO 27001

  • Sarbanes-Oxley (SOX)

  • General Data Protection Regulation (GDPR)

  • FedRAMP (Moderate or High)

• Proven experience with risk assessment methodologies and control testing.

• Strong understanding of IT governance and control principles.

• Excellent project management and organizational skills.

• Exceptional written and verbal communication skills.

Preferred Qualifications:

• Strong background in Identity Security and/or Privileged Access Management.

• Familiarity with using and implementing SailPoint products and services.

• Strong background in scripting and automation.

• Proficient with the use and governance of Artificial Intelligence.

Education and Certifications:

• A bachelors degree in information technology Cybersecurity Business Administration or equivalent professional experience.

• Relevant professional certifications such as CISA CISSP CISM CRISC or similar are highly desirable.

Path to success

First 30 Days:
Understand compliance landscape (SOC 2 SOX ITGCs FedRAMP NIST ISO 27001).
Review key controls including User Access Reviews (UAR) and SailPoint ISC certification campaigns.
Begin building or enhancing SailPoint ISC knowledge through hands-on learning or instructor-led training.
Deliver initial gap analysis covering compliance posture audit readiness and automation opportunities.

By 60 Days:

Execute key controls including UARs using SailPoint ISC certification campaigns and access governance processes.
Collaborate with internal auditors to support SOC SOX and FedRAMP audits.
Apply SailPoint ISC capabilities and automation (workflows certifications reporting) to improve efficiency.
Enhance policies procedures and compliance documentation aligned to regulatory requirements.

By 90 Days:
Own IT compliance program across SOC 2 SOX FedRAMP ISO 27001 and GDPR.
Act as primary liaison for auditors and drive timely remediation of audit findings.
Optimize controls (including UAR) using SailPoint ISC automation and AI-driven insights.
Develop advanced dashboards and reporting on compliance risks and audit outcomes.

Benefits and Compensation listed vary based on the location of your employment and the nature of your employment with SailPoint.

As a part of the total compensation package this role may be eligible for the SailPoint Corporate Bonus Plan or a role-specific commission along with potential eligibility for equity participation. SailPoint maintains broad salary ranges for its roles to account for variations in knowledge skills experience market conditions and locations as well as reflect SailPoints differing products industries and lines of business. Candidates are typically placed into the range based on the preceding factors as well as internal peer equity. We estimate the base salary for US-based employees will be in this range from (min-mid-max USD):

Base salaries for employees based in other locations are competitive for the employees home location.

Benefits Overview

1. Health and wellness coverage: Medical dental and vision insurance

2. Disability coverage: Short-term and long-term disability

3. Life protection: Life insurance and Accidental Death & Dismemberment (AD&D)

4. Additional life coverage options: Supplemental life insurance for employees spouses and children

5. Flexible spending accounts for health care and dependent care; limited purpose flexible spending account

6. Financial security: 401(k) Savings and Investment Plan with company matching

7. Time off benefits: Flexible vacation policy

8. Holidays: 8 paid holidays annually

9. Sick leave

10. Parental support: Paid parental leave

11. Employee Assistance Program (EAP) and Care Counselors

12. Voluntary benefits: Legal Assistance Critical Illness Accident Hospital Indemnity and Pet Insurance options

13. Health Savings Account (HSA) with employer contribution

SailPoint is an equal opportunity employer and we welcome all qualified candidates to apply to join our team. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability protected veteran status or any other category protected by applicable law.

Alternative methods of applying for employment are available to individuals unable to submit an application through this site because of a disability. Contact or mail to 11120 Four Points Dr Suite 100 Austin TX 78726 to discuss reasonable accommodations. NOTE: Any unsolicited resumes sent by candidates or agencies to this email will not be considered for current openings at SailPoint.