About Nintex:
At Nintex, we are transforming the way people work, everywhere.
As the global standard for process intelligence and automation, we're trusted by over 10,000 public and private sector organizations across 90 countries. Our customers, from industry giants like Amazon, Coca-Cola, and Microsoft, rely on the Nintex Platform to accelerate their digital transformation journeys by managing, automating, and optimizing business processes quickly and efficiently. We improve their lives through the technology we build.
We are committed to fostering a workplace that supports amazing people in doing their very best work every day. Collaboration is constant, our workplace is fun, the environment is fast-paced, and we value our people’s curiosity, ideas, and enthusiasm. Driven by passion and accountability, we take initiative, measure progress, and deliver results. Our culture fosters innovation and problem-solving, fueled by curiosity and a commitment to thinking big. Together, we move with agility, prioritize customer needs, and build unity through empathy, leaving a positive impact wherever we go.
About the role:
The Compliance Analyst is a member of the Nintex Security Team and partners with globally distributed departments to execute and sustain the company’s compliance program. This role is operational and tactical in nature, with responsibility for working with teams to implement compliance requirements, enabling audit readiness, coordinating ongoing compliance activities, and supporting external and internal audits.
The Compliance Analyst applies strong project management and analytical skills to manage multiple concurrent initiatives and brings working expertise across multiple compliance frameworks to ensure consistent and effective compliance outcomes.
Your contribution will be:
**Domain Knowledge and Documentation: **Coordinate the full compliance lifecycle, including gap analysis, remediation planning, audit execution, and continuous compliance monitoring. Prepare the organization for new and evolving compliance frameworks by coordinating assessments, audits, self-assessments, and evidence collection and review activities. Develop, maintain, and review compliance related documentation to support training, awareness, and sustained operational effectiveness. Support the Revenue team by answering Security-related questions from customers and prospects. Assist with curating content for ongoing Security training requirements, ensuring completion targets are met.
**Global Stakeholder Management: **Collaborate with globally distributed stakeholders across Engineering, IT, Product, HR, Legal, and other business functions to support consistent implementation of compliance requirements. Serve as a primary liaison for audit coordination, including facilitating interviews, walkthroughs, and evidence requests. Provide guidance and training to internal teams on compliance initiatives and audit readiness.
Adhere to Nintex Standards and Practices: Support adherence to Nintex governance, risk, and compliance standards by assisting with the creation, review and updates of information security policies and procedures. Ensure compliance activities align with internal guidelines and approved risk management practices. Contribute to compliance integration efforts for acquisitions or organizational changes as required.
Risk Management and Mitigation: Support risk management activities by assisting with security reviews and compliance risk assessments for new initiatives, technologies, and vendors. Identify potential compliance and control gaps, document risks, and assist in tracking mitigation activities. Escalate identified risks and issues to appropriate stakeholders in a timely manner.
To be successful, we think you need:
Bachelor’s degree in Information Security, Information Technology, Risk Management, Business, or a related field, or equivalent practical experience.
A proven track of at least 5 years working experience with common compliance and assurance frameworks such as SOC 2, ISO/IEC 27001, GDPR, HIPAA, FedRAMP, or similar international regulatory standards.
Relevant certifications are preferred but not required, including: CISA, CRISC, CISSP, CCSK, ISO 27001 Lead Implementer/Auditor, or related compliance or risk certifications.
Familiarity with common IT infrastructure, SaaS based cloud services, identity and access management concepts, and security tooling sufficient to assess control design and operational effectiveness (hands‑on administration is not required).
What’s in it for you?
Nintex has a hybrid working model, enabling us to build culture, learn, and grow together. We intentionally connect and collaborate, while emphasizing flexibility with a blend of at-home and in-office work. This role is a hybrid role in our local Nintex office.
While our offerings differ from country to country, we offer our entire global workforce an array of exciting perks and benefits, including
- Global Gratitude and Recharge Days
- Flexible, paid time off policy
- Employee wellness programs and counseling resources
- Meaningful peer recognition and awards
- Paid parental leave
- Invention/patenting assistance
- Community impact, paid volunteer time, and opportunities
- Intercultural learning and celebration
- Multiple tools through which to learn and grow, and an incredible global community
View more about our benefits here: https://www.nintex.com/wp-content/uploads/2023/01/Global-Perks-and-Benefits.pdf.