Compliance Analyst

Legal Lehi, Utah


NetDocuments is the world’s #1 trusted cloud-based content management and productivity platform that helps legal professionals do their best work. We strive to win together through passionate hard work, exploring new things and recognizing every interaction matters.

NetDocuments provides rewarding career growth in an inclusive, diverse environment where employees are encouraged to openly contribute creative ideas and innovation, backed by supportive peers and leadership working together to achieve our goals as a unified team.

At our core, we are dedicated to empowering our employees to drive successful business outcomes and better user experiences for our customers and partners. Our customer-centric approach and employee enablement has allowed us to enjoy many accolades, including being named among the 2022 list of Inc. Magazine’s 5000 Fastest-Growing Private Companies in America. Other recent awards include:

  • 2023 National Top Workplaces
  • Two-time winner (2021, 2022) Top Workplace in the US by the Salt Lake Tribune
  • Two-time winner (2021, 2022) Utah’s Best Companies to Work for by Utah Business magazine
  • 2022 Employee Appreciation and Employee Well Being by the Salt Lake Tribune
  • 2022 Top Workplace in the US by the Salt Lake Tribune for the Technology Industry
  • 2022 Top Workplace in the US by the Salt Lake Tribune for Compensation & Benefits
  • 2022 Top Workplace in the US by the Salt Lake Tribune for Work-Life Flexibility
  • 2021 Top Workplace in the US by the Salt Lake Tribune for Remote Work
  • 2021 Top Workplace in the US by the Salt Lake Tribune for Top Managers
  • 2021 Top Workplace in the US by the Salt Lake Tribune for Compensation
  • 2021 Coolest Tech Companies to Work for by Dev Mountain

NetDocuments is a hybrid, remote-friendly workplace. Come join our team and work inspired each day!

About the Opportunity: 

NetDocuments is seeking a Compliance Analyst 
to assist the Compliance Department in assessing the company's compliance with security and privacy requirements. The Compliance Analyst will report to the VP of Compliance and be directed by team leads. The ideal candidate will have experience examining practices and
policies within the business, identifying areas out of compliance, gathering and documenting compliance evidence, and offering suggestions for how to make necessary modifications.

What your contributions will be:
  • To meet the basic qualification for this role, you must be a U.S. Citizen
  • Coordinate with compliance supervisors on monitoring and auditing activities of company’s compliance program which includes, but is not limited to, controls that meet SOC 2, ISO 27001 family, FedRAMP, GDPR, TPRM, Data Privacy, Business Continuity, and HIPAA business associate requirements
  • Act as a central point of contact/subject matter expert to ensure internal controls are properly designed and implemented
  • Collaborate with and facilitate as applicable the Company’s on-going audit and risk assessment processes between internal/external auditors and the internal team owners and stakeholders
  • Maintain on-going communication with the internal/external auditors including alignment of SOC 2, ISO 27001 family, FedRAMP, and Data Privacy compliance activities
  • Track progress against compliance program milestones
  • Provide timely updates to compliance supervisors that communicate status, trends and action plans of various compliance initiatives
  • Provide education to IT Control owners focusing on demonstration of compliance requirements and share hot topics in SOC 2, GDPR, Data Privacy, Business Continuity, and ISO 27001 compliance
  • Other duties as assigned
What you will bring to the team:

  • Risk intelligence
  • Analytical and research skills
  • Ability to comprehend complex data sets
  • Excellent interpersonal, written, and oral communication skills
  • Ability to execute multiple tasks in a fast-paced environment
  • Critical-thinking and problem-solving skills
  • Ability to perform under pressure
  • Emotional and moral intelligence
  • Adaptability and flexibility
  • Attention to detail
  • Integrity
What you will need for success:

  • Bachelor’s degree in a job-related field such as Computer Science or Computer Engineering or equivalent experience is preferred; an advanced degree is a plus
  • Industry-related legal, compliance, IT audit, information security or business continuity management certifications are a plus
  • 1+ years of experience in IT audit; security & privacy risk assessments are a plus; IT risk management; data protection controls; software development lifecycle; and/or IT compliance experience also a plus
  • A background in or knowledge of ISO management systems related to information security, data privacy, and business continuity; ERM; COSO/COBIT; OECD Privacy Principles; FIPPs; NIST RMF; ITGCs; policy life cycle; ethics; and/or the USSC Guidelines 7 elements of an effective compliance and ethics program
  • Experience with Governance, Risk, and Compliance (e.g. OCEG Capability Maturity Model), GRC tools & techniques, and/or policy/procedure development
  • Prior exposure to, and experience with, SOC 2, ISO 27001 and related codes of practice & extensions, ISO 22301, FedRAMP, HIPAA/HITECH, SOX IT Audit, PCI DSS, and/or U.S. & international privacy laws
  • Outstanding interpersonal and communication skills to work with the IT team, business managers, executives and others
Ideally you will have:

  • Experience with risk management frameworks (ISO, COSO, NIST, SOX ICFR, COBIT, FAIR, RIMS, SFG, SEI, etc.), cloud computing security & data privacy controls, FedRAMP, GDPR, experience in monitoring or performing IT operations and support, IT/ ITGC control testing, information system audits, strong interpersonal skills, effective communication across multiple stakeholders and internal/external auditors. One or more of CISSP, CISA, CRISC, CGEIT, CIA, CRMA, CIPP, CCEP, CIPT and related certifications

What you will receive (US Specific):

  • 90% healthcare premiums company covered
  • HSA company contribution
  • 401K match at 4% with no vesting period 
  • Twice a year merit increases
  • Flexible time off typically 3 to 4 weeks a year, not including the 9 paid holidays
  • Authenticity and accountability from leadership
  • Connection, access, and mentorship from exceptional leaders
  • Growing company with opportunities for advancement

Net Documents is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. All employment decisions are based on business needs, job requirements, individual qualifications, without regard to race, color, religion, sex, (including pregnancy), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity and/or expression, military and veteran status, or any other status protected by laws or regulations in the locations where we operate.  NetDocuments believes diversity and inclusion among our employees is critical to our success, and we are committed to providing a work environment free of discrimination and harassment.