Join Airtable as a Compliance Specialist, GRCP, and play a pivotal role in shaping and maintaining our compliance landscape. You’ll own, in conjunction with another Compliance Specialist, the end-to-end management of critical compliance programs—including SOC 2, ISO 27001, HIPAA, and TISAX—ensuring our controls are robust, audits are seamless, and customer trust is continually strengthened. This is a unique opportunity to drive impactful compliance initiatives in a high-growth SaaS environment, partnering cross-functionally to support ongoing GRC operations and customer security needs.
What you'll do
- Own and operate compliance programs such as SOC 2, ISO 27001, ISO27701, HIPAA, and TISAX, including successful completion and renewal of certifications
- Lead and manage internal, external, and customer audits end-to-end, including direct engagement with auditors and evidence collection
- Track, remediate, and validate 100% of audit findings within agreed SLAs, ensuring no findings on SOC2 and no NCFs on external audits
- Drive cross-functional training and improve understanding of control requirements for stronger, more consistent implementation
- Manage and scale customer trust initiatives, including timely completion of security questionnaires and customer audits
- Establish and maintain a common control framework to streamline compliance efforts
- Support ongoing GRC operations, including internal data governance and compliance reviews.
- Develop and report on compliance and customer trust metrics and performance indicators (KPIs)
- Develop, maintain, and enhance security and customer trust whitepapers
Who you are
- 4+ years of direct experience in owning and operating compliance programs in a high-growth or SaaS environment
- Hands-on in managing customer, internal, and external audits, with direct auditor engagement and evidence collection
- Proven track record in managing and scaling customer trust, including security questionnaires and customer audits
- Big4 experience strongly preferred
- Conducted end-to-end audits of SOC2, ISO27001, and ISO27701
- Familiar with tools such as Crowdstrike, JAMF, RedCanary, GitHub, Airtable, and JupiterOne
- Knowledgeable in HIPAA and TISAX compliance requirements
- Skilled at establishing and maintaining a common control framework
- Strong communicator and collaborator, able to drive cross-functional initiatives and training
Airtable is an equal opportunity employer. We embrace diversity and strive to create a workplace where everyone has an equal opportunity to thrive. We welcome people of different backgrounds, experiences, abilities, and perspectives. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or any characteristic protected by applicable federal and state laws, regulations and ordinances. Learn more about your EEO rights as an applicant.
VEVRAA-Federal Contractor
If you have a medical condition, disability, or religious belief/practice which inhibits your ability to participate in any part of the application or interview process, please complete our Accommodations Request Formand let us know how we may assist you. Airtable is committed to participating in the interactive process and providing reasonable accommodations to qualified applicants.
#LI-remote
