Job Title:
Security Compliance Analyst IV – Cloud Governance, Risk & Regulatory Compliance
Location:
Dublin, Ireland (Hybrid)
Type:
Contract
About the Role
We are seeking an experienced
Security Compliance Analyst IV
to join the Cloud Governance, Risk & Compliance (GRC) team of a leading global technology platform. This position is ideal for professionals with a strong background in security engineering or implementation who now focus on cloud security, compliance, and risk management. You will collaborate with product, legal, engineering, and security teams to develop, maintain, and continuously strengthen the organization's cloud compliance posture, particularly in response to complex, novel security challenges and emerging global regulations.
Key Responsibilities
* Lead and contribute to large-scale
Cloud Security GRC
and
Compliance Management
programs spanning multiple business units.
* Collaborate with cross-functional stakeholders to identify risks, define program goals, prioritize deliverables, and ensure compliance objectives are met.
* Design, implement, and assess
security control frameworks
for multi-cloud environments (AWS, Azure, GCP).
* Develop, apply, and maintain
maturity frameworks
and roadmaps to enable continuous improvements in compliance and risk posture.
* Monitor, interpret, and document the impact of
emerging regulatory requirements
(including NIS 2, RED Directive, GDPR) on policies and controls.
* Create and standardize templates, best practices, tools, and documentation to streamline GRC processes and ensure consistency across the organization.
* Conduct deep-dive reviews of cloud architectures and systems, identify control gaps, and recommend effective technical and procedural mitigation strategies.
* Support internal
Security Risk Assessments (SRA)
, compliance audits, and evidence collection activities.
* Partner with global and regional security teams to ensure alignment and contribute to documentation of compliance positions.
* Apply sound reasoning and first-principle thinking to analyze and solve new or unusually complex security problems, ensuring robust and forward-thinking solutions.
Minimum Qualifications
* 5–7 years of experience in
Information Security
,
Cloud Security
, or
GRC
roles, including at least 5 years of hands-on work with a major cloud provider (AWS, Azure, or GCP).
* Prior experience as a security engineer or in technical security implementation (no coding required, but strong technical background expected).
* Demonstrated expertise in
GRC principles
, risk assessments, and security/control frameworks (ISO 27001, NIST CSF, SOC 2, CIS).
* In-depth understanding of
EU security regulations
, including NIS 2 and the RED Directive.
* Proven ability to reason through and solve novel or complex security challenges.
* Excellent communication skills for explaining technical risks and processes across technical and business audiences.
Preferred Qualifications
* Professional certifications such as
CISSP, CCSP, CISA, ISO 27001 LA, CRISC
.
* Experience with
cloud security governance platforms
(ServiceNow GRC, Archer, MetricStream, or similar tools).
* Familiarity with
Cloud Security Posture Management (CSPM) tools
such as Prisma Cloud, Wiz, or Dome9.
* Knowledge of compensated controls, AWS SEP principles, security posture optimization, and DevSecOps integration.
Why Join Us
Join a
global technology leader
driving innovation at internet scale. You'll be at the forefront of regulatory compliance and security strategy, solving complex challenges while protecting cloud environments serving billions worldwide. You'll drive impactful security improvements and shape how cloud governance operates at one of the world's most influential digital platforms.