Compliance Analyst

About Us

insightsoftware is a global provider of reporting, analytics, and performance management solutions that unlock the potential of business data and transform the way finance and data teams operate. We empower leaders from over 32,000 organizations to make timely and intelligent decisions. Our comprehensive solutions span Financial Planning and Analysis (FP&A), Controllership, and Data and Analytics. We deliver finance teams the insights required to navigate any economic climate and drive greater financial intelligence, while increasing productivity, visibility, accuracy, and compliance. Learn more at insightsoftware.com.

Job Description

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to support the company's Governance, Risk Management, Compliance, & Disputes ("GRCD") function. Reporting to the managing Sr. Corporate Counsel, this role will play a critical part in maintaining and enhancing our compliance programs across export controls, regulatory compliance, data protection, and information security.

The ideal candidate will be proactive, organized, and able to exercise independent judgment with minimal supervision. They will be collaborative and highly organized with proven ability to manage multiple priorities and deadlines simultaneously. The successful candidate will be detail-oriented, with effective written and verbal skills.

Strong candidates will thrive in a fast-paced, global SaaS environment and are passionate about developing scalable compliance processes that support business growth while managing risk.

Key Responsibilities

Regulatory & Export Compliance

• Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics.
• Conduct secondary screening of third parties (vendors, partners, customers), and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations).
• Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs").

Data Privacy & Protection

• Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA).
• Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries.
• Support privacy management tools and platforms for consent management and privacy workflow automation.

Risk Management

• Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring.
• Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking.
• Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance.

Program Support

• Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls.
• Manage documentation repository for enterprise-wide policies, procedures, guidelines, and training materials, ensuring all materials are current, organized, and accessible to stakeholders.
• Coordinate responses to internal and external audits, regulatory inquiries, and due diligence requests.
• Prepare compliance reports, dashboards, and metrics for key stakeholders, including senior leadership.

Required Qualifications

• Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field.
• Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies.
• Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests.
• Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles.
• A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management.
• Experience with third-party screening tools and vendor risk management platforms.
• Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNow, MetricStream).

Preferred Qualifications

• 2+ years of experience with U.S. government contracting, including familiarity with FAR, DFARS, and import/export requirements.
• Certification in risk, data privacy, compliance, ethics, information security, or similar area (e.g., CCEP, CRCM, CISSP, CRISK, CRMA, CIPP).
• Prior experience in the software/SaaS industry, particularly in high-growth or M&A-active environments.
• Experience supporting post-merger integration activities and compliance harmonization across acquired entities.
• Prior start-up or scale-up experience.

Additional Information

All your information will be kept confidential according to EEO guidelines.

Learn more about our high-energy, high-performance global team: Work With Us

insightsoftware About Us: Hear From Our Team

Background checks are required for employment with insightsoftware, where permitted by country, state/province.

At insightsoftware, we are committed to equal employment opportunity regardless of race, color, ethnicity, ancestry, religion, national origin, gender, sex, gender identity or expression, sexual orientation, age, citizenship, marital or parental status, disability, veteran status, or other class protected by applicable law. We are proud to be an equal opportunity workplace.

Key skills/competency

• Compliance Program Management
• Risk Management
• Data Protection
• Export Controls
• Regulatory Frameworks
• GRC Platforms
• Information Security
• Audit Management
• Policy Development
• Third-Party Screening