Senior Trust Operations Analyst

Synthesia • Full-time • New York, New York, United States • 1m ago

Senior Trust Operations Analyst

Location: Remote (US East Coast)

Team: Corporate Security - Trust Operations

At Synthesia, we’re changing the way people communicate with video. Gone are the days of expensive cameras, studios, and actors — with our AI video platform, anyone can create professional videos in minutes. We’re used by over 60,000 businesses, from startups to the world’s biggest brands. And we’re just getting started.

As our team and customer base grow, we need to make sure our security and compliance efforts scale with us. That’s where you come in.

The role:

We're looking for a Trust Operations Analyst to join our Corporate Security team.

Your primary focus will be enabling our Sales and Customer Success teams to win and retain customer trust through expert security guidance. You'll be the go-to security subject matter expert for customer-facing teams, helping them navigate security questionnaires, customer audits, and trust conversations with confidence.

Your second priority will be vendor security assessments and due diligence — evaluating third-party risks, conducting security reviews, and ensuring our supply chain meets our security standards.

Beyond these core responsibilities, you'll also support our compliance efforts with frameworks like ISO 27001, ISO 42001, SOC 2 and CSA STAR, helping us maintain our certifications and stay audit-ready.

This is a hands-on, customer-focused role that combines security expertise, stakeholder enablement, and risk management. You'll work closely with Sales, Customer Success, Legal, Procurement, and Engineering teams, becoming a trusted advisor on all things security and trust.

You don't need to be a compliance expert, but if you have a solid background in security, love helping others succeed, and are ready to take ownership of customer and vendor trust, this role offers a great opportunity to grow quickly and have real impact in a hypergrowth AI unicorn.

What you’ll be doing:

Customer Enablement (Primary Focus)

Act as the primary security SME for Sales and Customer Success teams
Respond to customer security questionnaires, RFPs, and RFIs with accuracy and speed
Support customer security audits and assessments, providing documentation and evidence
Develop playbooks, FAQs, and resources to help customer-facing teams handle security conversations
Join customer calls when needed to address security concerns and build trust
Track common customer security requirements and work with Engineering and Product to address gaps

Vendor Security & Due Diligence (Secondary Focus)

Conduct security assessments of third-party vendors and suppliers
Review vendor security documentation, certifications, and questionnaires
Work with Procurement and Legal to ensure vendors meet our security standards
Maintain a vendor risk register and track ongoing vendor security posture
Escalate high-risk findings and coordinate remediation efforts

Compliance & Internal Trust Operations

Support evidence collection and documentation for ISO 27001, ISO 42001, SOC 2, and other frameworks
Maintain and improve internal security policies and procedures
Collaborate with cross-functional teams to keep security and compliance efforts aligned
Participate in risk assessments and track mitigation efforts
Explore new certifications and frameworks as business needs evolve

We'd love to hear from you if you:

Have experience in customer-facing security roles: answering security questionnaires, supporting audits, or enabling sales teams
Understand how to conduct vendor security assessments and third-party risk reviews
Are comfortable navigating technical concepts and explaining them clearly to non-technical stakeholders
- We seek someone with technical aptitude. You don't need to be an expert programmer, but should be comfortable writing a simple Python script when needed
- Understand and have experience as a user of various AI, LLMs, and Coding agents tools
Have a background in security, risk, compliance, or trust operations
Are confident engaging with customers and vendors, providing clear and professional support both in writing and during live meetings
Understand how cloud environments work — especially AWS
Can work independently, prioritise effectively, and proactively troubleshoot issues
Are organised, detail-oriented and communicate clearly and respectfully across all stakeholder groups

Bonus points if you:

Have scaled customer security operations in a fast-growing SaaS or startup environment
Have experience managing high volumes of security questionnaires and RFIs
Have conducted vendor security due diligence or managed a vendor risk program
Work with and have incorporated AI into your daily workflows
Have supported or participated in customer or third-party audits
Have experience with frameworks like ISO 27001, SOC 2, or ISO 42001
Have used compliance and trust automation tools like Vanta, Drata, OneTrust, or similar platforms
Know what Okta, Wiz, and Github are and how they fit into a security program