FreshRemote.Work

Governance, Risk and Compliance Analyst

San Francisco, Remote

About Mixpanel

Mixpanel is an event analytics platform for builders who need answers from their data at their fingertips—no SQL required. When everyone in the organization can see and learn from the impact of their work on product, marketing, and company revenue metrics, they are poised to make better decisions.

Over 9,000 paid customers, including companies like Netflix, Pinterest, Sweetgreen, Samsara, and Uber, use Mixpanel to understand their customers and measure progress. Our commitment is to provide the most comprehensive and reliable analytics platform accessible and trusted by all.

About the Role

Security at Mixpanel is not a “check-the-box” exercise. Our growing team is dedicated to understanding and managing security risks while enabling our engineering and product design partners to continue making world-class software. The team is looking for a security and privacy leader to partner with its world-class product and engineering teams.

Together with the current security team, not only will you drive enterprise security initiatives, but also be an advocate for security and privacy at Mixpanel.

Mixpanel is seeking a dynamic Governance, Risk and Compliance Analyst  to support our Information Security and Information Technology teams that will help ensure that we accomplish our GRC objectives.

Responsibilities

  • Lead security assessments and audits and monitor and manage compliance of implemented enterprise information security controls
  • Respond to customer security inquiries. Serve as a company representative with prospects, customers, and partners by assisting with completing security questionnaires, assessments and audits
  • Lead periodic internal risk assessments based on changes to business, technology or threat landscape
  • Evaluate and manage third-party risk and work with vendors to remediate identified risks
  • Ensure that company policies are up to date, recorded, tracked and disseminated to the entire company
  • Coordinate periodic disaster recovery / business continuity testing and training
  • Build content for employee security awareness and conduct new hire and on-going training
  • Develop, maintain and report against security control KPIs

We’re Looking For Someone Who Has

  • 3+ years of experience in a Governance, Risk and Compliance role, preferably in the technology industry.
  • Familiarity with compliance and risk management frameworks, such as SOC 2, ISO 27001, ISO 27701, SOX, HITRUST, etc.
  • Strong bias for action; ability to juggle multiple priorities and create a sense of urgency in a fast-paced, dynamic environment.
  • Strong understanding of Business Continuity and Disaster Recovery principles
  • Excellent communication and analytical skills
  • Strong understanding of cloud security principles is a plus
  • Industry standard certification such as CISA, CISM or other related certification is a plus
  • Experience with GRC tools such as ZenGRC, Vanta, etc. is a plus
  • Project management experience is a plus
  • Experience with third-party risk management tools such as Panorays or Bit Sight is a plus

Compensation

The amount listed below is the total target cash compensation (TTCC) and includes base compensation and variable compensation in the form of either a company bonus or commissions. Variable compensation type is determined by your role and level. In addition to the cash compensation provided, this position is also eligible for equity consideration and other benefits including medical, vision, and dental insurance coverage. You can view our benefits offerings here.

Our salary ranges are determined by role and level and are benchmarked to the SF Bay Area Technology data cut released by Radford, a global compensation database. The range displayed represents the minimum and maximum TTCC for new hire salaries for the position across all of our US locations. To stay on top of market conditions, we refresh our salary ranges twice a year so these ranges may change in the future. Within the range, individual pay is determined by experience, job-related skills, qualifications, and other factors. If you have questions about the specific range, your recruiter can share this information.

Mixpanel Compensation Range$139,500—$170,500 USD

Benefits and Perks

  • Comprehensive Medical, Vision, and Dental Care
  • Mental Wellness Benefit
  • Generous Vacation Policy & Additional Company Holidays
  • Enhanced Parental Leave
  • Volunteer Time Off
  • Additional US Benefits: Pre-Tax Benefits including 401(K), Wellness Benefit, Holiday Break

*please note that benefits and perks for contract positions will vary*

Culture Values

  • Be Open: When knowledge becomes open, we can come together as a team to collaborate around a shared purpose
  • Customer Focus: Our customers’ success is our success
  • Lead Change: Everyone at Mixpanel has the capacity to make an impact on the business
  • Results Oriented: Driving results in a measurable way ensures we stay focused on the highest impact initiatives
  • One Team: We can’t win without each other

Why choose Mixpanel?

We’re a leader in analytics with over 9,000 customers and $277M raised from prominent investors: like Andreessen-Horowitz, Sequoia, YC, and, most recently, Bain Capital. Mixpanel’s pioneering event-based data analytics platform offers a powerful yet simple solution for companies to understand user behaviors and easily track overarching company success metrics. Our accomplished teams continuously facilitate our expansion by tackling the ever-evolving challenges tied to scaling, reliability, design, and service. Choosing to work at Mixpanel means you’ll be helping the world’s most innovative companies learn from their data so they can make better decisions.

Mixpanel is an equal opportunity employer supporting workforce diversity. At Mixpanel, we are focused on things that really matter—our people, our customers, our partners—out of a recognition that those relationships are the most valuable assets we have. We actively encourage women, people with disabilities, veterans, underrepresented minorities, and LGBTQ+ people to apply. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity or expression, sexual orientation, age, marital status, veteran status, or disability status. Pursuant to the San Francisco Fair Chance Ordinance or other similar laws that may be applicable, we will consider for employment qualified applicants with arrest and conviction records. We’ve immersed ourselves in our Culture and Values as our guiding principles for the impact we want to have and the future we are building.

Apply

Job Profile

Regions

North America

Countries

United States

Benefits/Perks

Dental Insurance Equity consideration Medical Medical Insurance Vision Vision Insurance

Tasks
  • Conduct risk assessments
  • Coordinate disaster recovery testing
  • Develop security training content
  • Lead security assessments
  • Manage third party risk
  • Monitor Compliance
  • Respond to security inquiries
  • Update company policies
Skills

Analytical Analytics Audits Business Continuity Cloud Security Communication Compliance Disaster Recovery Event analytics Governance GRC tools Information security Mixpanel Project Management Reliability Risk Management Security assessments SQL Third-Party Risk Management

Experience

3 years

Education

Marketing

Certifications

CISA CISM

Timezones

America/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9