Senior Security & Compliance Analyst

MNTN

3h•Remote

About The Position

At MNTN, we put our people first, full stop. This allows our company culture to be defined by our team members and their shared values, like trust, ambition, quality, radical honesty, and compassionate leadership. It’s why we all really love working for the Hardest Working Software in Television™ (and also why we were named one of Ad Age’s Best Places To Work in 2025.) We pride ourselves on bringing unrivaled performance and simplicity to Connected TV advertising. Our self-serve technology makes running TV ads as easy as search and social, helping brands drive measurable conversions, revenue, site visits, and more. It’s what led MNTN to being named one of Fast Company's Most Innovative Companies in 2023. You can learn more about us and everything we do by visiting https://mountain.com/. We’re committed to innovation that empowers, not replaces. At MNTN, AI is a tool for growth, enhancing efficiency while keeping a people-first approach. Our goal is to streamline workflows and drive new solutions—without compromising the human element that makes our company great. So if wanting to do more, own more, and make a bigger impact comes naturally to you, then you may be the person we're looking for to join us in our next stage of growth.

Requirements

5+ years of security or compliance analysis, or assurance/advisory experience, including building controls in the technology space.
A thorough understanding of technical environments, and the ability to communicate with subject matter experts about technical and operational security controls.
Experience mapping and rationalizing controls to meet requirements across multiple information security/technology compliance standards (SOX, SOC2, ISO 27001, GDPR, IT General Controls)
You have excellent written and verbal communication skills to communicate details of a security program to a wide spectrum of audiences, including customers.
You have strong analytical skills and attention to detail.
Be flexible and can adapt to a changing environment.
You can be self-directed and take initiative on projects and tasks, and in identifying gaps related to security controls, with minimal day-to-day oversight/direction.

Nice To Haves

Knowledge of Amazon Web Services, Google Cloud Services and Container technologies.
CISA, CISM, CISSP, or related certification
Experience using governance, risk management, and compliance (GRC) tools.

Responsibilities

Maintain a deep understanding of our platform and its supporting infrastructure and processes, as well as how our compliance obligations apply to that environment.
Provide responses to and maintain reference material for customer inquiries and due diligence procedures that involve technology compliance and participate in discussions for security and compliance assessments.
Continuously confirm and refine MNTN’s internal control framework and related documentation (e.g., policies, procedures, narratives, training material) and contribute to ongoing controls development and improvement.
Own evidence collection for our various audits, especially SOX and SOC2.