Regulatory & Security Compliance Analyst - Remote

About the Role

We are seeking a Regulatory & Security Compliance Analyst to join our team at Rain. This remote position offers you the chance to make a significant impact in the fintech industry. You will be responsible for overseeing Rain’s compliance program, ensuring we meet and exceed regulatory and audit requirements.

What You'll Do

• Own Rain’s compliance program across DORA, SOC 2, SOC 1, GDPR, and PCI, ensuring we meet and exceed regulatory and audit requirements.
• Lead all compliance audits and certifications end-to-end — including renewals, observation periods, and new certifications Rain chooses to pursue.
• Maintain and evolve Rain’s policies, keeping them up-to-date, consistent across entities, and aligned with regulatory expectations.
• Ensure operational adherence by partnering with engineering, security, legal, and operations to make sure we are doing what we say we are doing in our policies.
• Build a proactive compliance culture, helping the team understand obligations and embedding compliance into day-to-day decision making.
• Identify gaps and risks early, then drive remediation plans to keep Rain audit-ready at all times.
• Assist the team in other compliance-related activities, including actionalize and refine KYB, KYC, and AML processes and procedures based on best practices informed by operational data.

Requirements

• Open to candidates in the US and EU.
• 3–7+ years of compliance, GRC, or security assurance experience, ideally in fintech, payments, SaaS, or other regulated industries.
• Deep familiarity with SOC 2, SOC 1, GDPR, PCI, and other compliance frameworks, with a proven track record of leading successful audits.
• Excellent program management skills — you can coordinate across teams, manage timelines, and keep multiple compliance workstreams moving.
• Strong attention to detail with the ability to turn complex requirements into clear, actionable tasks.
• Strong communication and influence skills, able to work with everyone from engineers to executives to external auditors.

Nice to Have

• Experience in card issuing, stablecoins, payments, or cross-border fintech products.
• Familiarity with ISO 27001, DORA, or other emerging global regulations.
• Experience with tools like Vanta.

What We Offer

• Unlimited time off — we require Rainmakers to take at least 10 days off.
• Flexible working environment — work from home or in the office.
• Comprehensive health, dental, and vision plans for you and your dependents.
• 401(k) with a 4% company match.
• Equity option plan for all employees.
• Health and wellness spending options.
• Team summits and off-sites to strengthen relationships.