Saas Compliance Analyst

Hey you \uD83D\uDC4B Want to work for one of the fastest growing SaaS companies in the world? \uD83D\uDCC8

We’re building the next generation of learning software that companies like AWS, Netflix, Opentable and L’Oreal rely on to deliver training \uD83D\uDCBB We believe learning is for everyone, and that we all have something we can learn from each other. We rely on one another to continuously innovate our products and processes to create an exceptional experience for our employees, customers and partners.

Still not sure? We are a culture where values are at the center of everything we do. We also embody what we call the
**Docebo Heart**. We trust our teammates, assume the best of one another, and also hold space for all the differences that make us better. \uD83D\uDC99

Are you ready to be a part of the learning revolution? \uD83D\uDE80

**About This Opportunity**:
The
**Compliance Analyst** will collaborate with internal departments and external parties to strengthen Docebo's Compliance and Security initiatives. This role encompasses a wide range of frameworks relevant to Docebo products, including NIST, GDPR, PCI, ISO, SOC, SOX, CFR21, and FedRAMP.

**solid understanding of cloud technology**, particularly in security. They should have
**experience in SaaS services**, be skilled at r
**eviewing customer agreements**, and possess exceptional
**communication abilities**.

**Reports to**: Business Enablement Manager - Security

**Location**:Biassono (hybrid)

**Responsibilities**:

- Respond to customer security requests, review RFI/RFQ, and properly compile responses related to Docebo's Compliance and Security posture.
- Respond to customer Compliance and Security questionnaires and identify outstanding customer requirements that need to be internally addressed with Corrective Action Plans (CAPs).
- Drive customer Compliance and Security annual audits.
- Support the Docebo legal team in reviewing Customer Agreements and Terms and Conditions, Data Processing Addendum, and any Compliance and Security documents, mapping customer requirements to Docebo standard processes.
- Prepare draft reports and other management reporting deliverables;
- Organize the internal Compliance and Security documentation and tools to keep them up to date and publish them on the Docebo “trust page”.
- Conducts additional information gathering as needed to identify compliance risks.
- Provide support to the GRC team (Governance, Risk, and Compliance) during SOC2, ISO27001, and FedRAMP audits to ensure that the organization is audit-ready.
- Other duties related to Compliance and Security as may be assigned or requested.

**Requirements**:

- Fluent knowledge of English, working experience with contracts and documentation in English, and effective communication and presentation skills.
- Significant working experience supporting audits and compliance & security activities for SaaS companies.
- Working knowledge of information security principles, trends, and best practices, including AWS environment and services.
- Knowledge of GDPR requirements and other data privacy laws (CCPA, PIPL, etc.).
- Understanding of compliance and security management principles.
- Continuous learning mindset, passion for the intersection of technology and business.

**Preferred Requirements**:

- Bachelor's degree in computer science, information security, auditing, law, or similar.
- Basic legal knowledge and principles related to any applicable privacy laws worldwide (GDPR, CCPA, etc.)
- Certified Information Systems Auditor (CISA)
- IAPP CIPP or CIPT
- CompTIA Security+
- FedRamp framework knowledge
- Proficient in tools such as Drata, RFP.io, Loopio, and similar.

**Benefits & Perks** \uD83D\uDE0D
- Generous Vacation Policy, plus 2 extra floating holidays to use for religious or cultural events that matter to you
- Employee Share Purchase Plan
- Career progression/internal mobility opportunities
- Four employee resource groups to get involved with (the Docebo Women's Alliance, PRIDE, BIDOC, and Green Ambassadors)
- WeWork partnership and “Work from Anywhere” program

**Hybrid Office Model \uD83C\uDFE2**

**About Docebo** \uD83D\uDC99

Here at Docebo, we power learning experiences for over 3000 customers around the world with our easy-to-use, AI-powered Suite designed to close the enterprise learning loop. We have successfully achieved 2 IPOs (TSX: DCBO & NASDAQ: DCBO), been recognized as a Top SaaS e-learning Solution, and are growing exponentially in the process.

Docebo is a global company with offices in North America, EMEA, APAC and more. Our people believe in six core values, simply defined and manifested in everything we do