Security Compliance Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

LangChain · 1 day ago

Security Compliance Analyst

positionSan Francisco, CA
timeFull-time
remoteOnsite
seniorityMid Level
money$150K/yr - $185K/yr
date3+ years exp

LangChain is a company focused on making intelligent agents ubiquitous through their agent engineering platform and open source frameworks. They are hiring a Security Compliance Analyst to build, operate, and scale their security compliance and customer trust programs, working across multiple teams to ensure effective security controls and compliance processes.

Artificial Intelligence (AI)DatabaseDeveloper APIsGenerative AI
check
H1B Sponsor Likelynote

Responsibilities

Build, maintain, and continuously improve responses to customer security questionnaires, RFPs, and trust reviews in partnership with Security, Engineering, Legal, and Product teams
Support the design, execution, and ongoing operation of SOC 2 and ISO 27001 compliance programs, including evidence collection, remediation tracking, and audit coordination
Configure, operate, and improve GRC automation using tools like Vanta, focusing on continuous evidence collection and minimizing manual compliance work
Assist with the implementation of new security and privacy frameworks, including scoping requirements, mapping controls, and helping operationalize them across the organization
Support privacy compliance efforts (e.g., GDPR, CCPA) by maintaining documentation, tracking requirements, and partnering with Legal and Engineering on operational controls
Work with Engineering, IT, and Security to make compliance a natural part of system design and operation, rather than a separate or manual process
Identify control and evidence gaps and actively drive follow-ups with responsible teams to resolution
Support the development and operation of a third-party risk management process, including vendor intake, security assessments, and ongoing reviews
Partner with Legal, IT, Procurement, and Product during vendor onboarding and renewals to ensure security requirements are clearly understood and met
Help draft, maintain, and evolve security policies, standards, and procedures so they are practical, clear, and aligned with how teams actually work
Assist with tracking security and compliance risks in a centralized risk register and supporting remediation efforts
Contribute to building repeatable, scalable processes that improve audit readiness and customer trust as LangChain grows

Qualification

SOC 2 complianceISO 27001 complianceGRC automationVendor risk managementPrivacy complianceCloud environmentsProcess improvementOrganizational skillsCommunication skillsTeam collaborationAttention to detail

Required

3+ years of professional experience in security compliance, GRC, risk management, privacy operations, or a closely related role
Experience in either: a high-growth startup environment, or a consulting, audit, or assurance environment (e.g., Big 4), with exposure to multiple clients, systems, or stakeholders
Hands-on experience supporting or performing audits for SOC 2 and/or ISO 27001, including evidence review, control validation, and remediation tracking
Experience responding to customer security questionnaires, due-diligence requests, or trust reviews
Familiarity with GRC platforms such as Vanta, Drata, Secureframe, or AuditBoard, with an interest in automation-first compliance
Working understanding of cloud environments (AWS, GCP, or Azure), including access controls, encryption, and logging concepts
Exposure to privacy requirements such as GDPR, CCPA, or similar regulations, and experience supporting privacy-related controls or documentation
Strong organizational and follow-through skills, with the ability to manage multiple workstreams across many teams
Clear written and verbal communication skills, especially when explaining security or compliance concepts
Comfortable operating in a fast-moving environment and taking initiative to build or improve processes

Preferred

Experience implementing or expanding new compliance or privacy frameworks beyond SOC 2
Experience improving GRC workflows through automation, APIs, or tooling integrations
Prior experience in a SaaS, cloud-native, developer-focused, or AI/ML-driven company
Familiarity with NIST CSF, CIS Controls, HIPAA, or Data Privacy Framework concepts
Relevant certifications such as CISA, CISSP, or ISO 27001 Foundation/Implementer

Benefits

Health and dental coverage
Flexible vacation
A 401(k) plan
Life insurance

Company

LangChain

twittertwittertwitter
company-logo
LangChain is a platform that provides open-source frameworks and tools for engineering and deploying language model agents.
dateFounded in 2022
location
San Francisco, California, USA
people-size51-200 employees
web-link
https://www.langchain.com

H1B Sponsorship

LangChain has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (6)

Funding

Current Stage
Growth Stage
Total Funding
$160M
Key Investors
IVPSequoia CapitalBenchmark
2025-10-20Series B· $125M
2024-02-15Series A· $25M
2023-03-21Seed· $10M

Leadership Team

leader-logo
Harrison Chase
Co-Founder and CEO
linkedin
leader-logo
Ankush Gola
Co-Founder
linkedin

Recent News

Timbr.ai
Introducing: LangChain SDK for AI Integration
2025-12-11
Geeky Gadgets
Guide Your Agent to Track Trends, Rivals, Funding, and Company Updates
2025-12-05
EIN Presswire
Large Language Model Evaluation As A Service Market to Expand at a 29.6% CAGR by 2029, Reaching US $4.88 Billion
2025-12-01
Company data provided by crunchbase