Risk & Compliance Analyst

Your Role

We are looking for a Risk & Compliance Analyst to be a trusted, community-oriented colleague within our Trust Operations program, ensuring our frameworks are ready to meet the evolving needs of our customers and global regulations.

You will confidently manage our regulatory and privacy obligations by designing and implementing robust compliance controls across a unified framework. This role requires you to drive risk reduction through scalable solutions and ensure firm alignment with our standards and policies.

You'll serve as a key partner, building collaborative relationships across functional areas, with stakeholders, vendors, and customers. Your critical work will ensure our frameworks are positioned to exceed customer expectations and regulatory obligations as our business evolves. You're the vital safeguard, ensuring we consistently keep our promises. You’ll work across the company to build scalable solutions that reduce risk while maintaining the high standards of privacy and security Hudl is known for.

As a Risk & Compliance Analyst, you’ll:

• Manage our Trust Operations program. You’ll support the Manager of Trust Operations to implement risk management, and compliance strategies that ensure we meet legal requirements like GDPR, FERPA, ISO 27001/2 and SOC 2.
• Collaborate across the business. You’ll partner with Sales and Legal on inbound security/privacy questions, work with various departments on security/privacy practices and help teams implement security/privacy controls.
• Build resilience and awareness. You’ll help create and maintain security/privacy awareness content to keep our mission secure.
• Drive vendor integrity. You’ll help manage our vendor risk program, by conducting risk reviews and maintaining a register of risk profiles.
• Provide actionable insights. You’ll track and report key metrics to senior leadership, ensuring we stay proactive in our governance and risk reduction efforts.

For this role, we're currently considering candidates who live within a commuting distance of our offices in Lincoln or Omaha, Nebraska. But with our flexible work policy, there aren't any current requirements for the number of days you come to the office.

Must-Haves

• Experienced. You have three to five years of experience in GRC, security or privacy, ideally within the SaaS or IoT industries.
• Technically savvy. You have experience creating and maturing IT control frameworks like SOC 2, NIST 800-53 or ISO 27001/2.
• A strong communicator. You can take complex security/privacy concepts and make them easy for non-technical audiences to understand.
• Strategic and proactive. You’re a resourceful problem-solver who can identify innovative approaches to complex compliance issues.
• Values-aligned. You’re humble, curious and ready to listen to understand while helping our teams navigate regulatory landscapes.
• Metric-driven. You have experience with reporting and providing an analytical perspective.
• Process-oriented. You have a process improvement mindset.
• Operationalized. You can translate requirements into repeatable operational practices.

Nice-to-Haves

• Certified. You hold one or more GRC certifications from ISACA, IAPP, ISC2 or SANS.
• Education. You have a degree in computer science, information systems, risk management, information security or a related field (though we’re happy to consider equivalent work experience).
• Tool knowledge. You have experience working with GRC tools and a solid understanding of security/privacy engineering.
• AI mindset. You’re curious about how AI can improve GRC processes and have a baseline understanding of the ethics and risks associated with AI and machine learning.
• Framework expertise. Experience creating, owning, and maturing organizational control and security frameworks.
• Compliance driver. You’re versed with SOC 2 and ISO 27001 implementation experience.
• Regulatory mind. Deep knowledge of regulatory and privacy landscapes.
• Project manager. You’re comfortable with managing projects and can navigate timelines and schedules.

Our Role

• Champion work-life harmony. We’ll give you the flexibility you need in your work life (e.g., flexible vacation time, company-wide holidays and timeout (meeting-free) days, remote work options and more) so you can enjoy your personal life too.
• Guarantee autonomy. We have an open, honest culture and we trust our people from day one. Your team will support you, but you’ll own your work and have the agency to try new ideas.
• Encourage career growth. We’re lifelong learners who encourage professional development. We’ll give you tons of resources and opportunities to keep growing.
• Provide an environment to help you succeed. We've invested in our offices, designing incredible spaces with our employees in mind. But whether you’re at the office or working remotely, we’ll provide you the tech stack and hardware to do your best work.
• Support your mental and physical health. We care about our employees’ wellbeing. Our Employee Assistance Program, employee resource groups and fitness partner Peerfit have you covered.
• Cover your medical insurance. We have multiple plans to pick from to ensure you’ll have the coverage you (and your dependents) want, including vision, dental, fertility healthcare and family forming benefits.
• Contribute to your 401(K). Yep, that’s free money. We’ll match up to 4% of your own contribution.

Compensation