Senior IT Compliance Analyst

Responsibilities

• Field Security
• Respond to customer and prospect security questionnaires, RFPs, and due diligence requests by articulating Yext's security posture, controls, and certifications.
• Partner with Sales, Legal, and Customer Success to review and approve security-related contract language, data processing agreements, and vendor assessments.
• Identify, assess, and document security risks raised through customer engagements and translate them into actionable controls or remediation plans.
• Develop and maintain reusable security response content, including documentation drafts, standard language, and control evidence packages.
• Understand customer security challenges and requirements, and provide tailored solutions and guidance that align with Yext's capabilities and compliance posture.
• Serve as a trusted security advisor to key internal and external stakeholders throughout the sales and procurement lifecycle.
• Governance
• Support the annual control attestation process and provide the required evidence.
• Measure, track, and report on security metrics and key performance indicators (KPIs).
• Ensure ongoing alignment with regulatory and industry compliance requirements (e.g., SOC 2, HIPAA, GDPR, NIS2).
• Risk & Compliance Management
• Conduct risk assessments across systems, applications, and vendors, documenting and tracking outcomes.
• Collaborate with IT, Legal, and Security teams to design and implement mitigation strategies.
• Maintain a centralized repository of standardized security questionnaire responses and keep them current with implemented controls.
• Manage responses to client questionnaires and third-party audit inquiries with accuracy and professionalism.
• Serve as a key point of contact for clients, auditors, and external stakeholders on security-related matters.
• Prepare and provide audit-ready evidence for internal and external audits (SOC 2, SOX, ISO 27001, etc.).
• Partner with control owners to create and track corrective action plans, ensuring timely remediation.
• Identify and implement process improvements to increase efficiency in audit preparation, risk assessments, and responses.
• Provide actionable recommendations to management on enhancing security and compliance practices.
• Key Competencies
• Governance & Compliance Expertise - Deep knowledge of regulatory and industry frameworks (SOC 2, SOX, ISO 27001, NIST CSF, HIPAA, GDPR, NIST AI RMF).
• Risk Management - Ability to evaluate risks and support effective remediation strategies.
• Audit & Assessment Skills - Skilled in managing and supporting audits, assessments, and assurance activities.
• Client & Stakeholder Engagement - Strong ability to build trust and deliver timely, accurate responses.
• Communication - Excellent written and verbal skills; able to present technical issues clearly to non-technical audiences and executives.
• Cross-Functional Collaboration - Works effectively across IT, Security, Legal, and business teams.
• Project & Time Management - Strong organizational skills with the ability to balance multiple priorities.
• Continuous Improvement - Identifies opportunities to streamline assurance and compliance processes.
• Technical Acumen - Familiarity with GRC platforms (e.g., OneTrust, SecurityScorecard, Bitsight, Archer) and security tooling.
• Leadership & Influence - Capable of guiding stakeholders and influencing decisions.

Requirements

• Bachelor's degree in Information S

Benefits

Additional Information

Yext (NYSE: YEXT) is the enterprise agentic marketing platform. AI is changing how customers find brands, and Yext gives enterprises the infrastructure to compete: Scout analyzes 10 billion signals monthly across four AI models to surface where you're losing and why, the Knowledge Graph maintains the verified data AI cites, and content generation and distribution agents syndicate brand content across LLMs, listings, social platforms, and review sites in real time. Thousands of brands in financial services, healthcare, retail, hospitality, and food rely on Yext to win across AI and traditional search. Join us and experience firsthand why we are consistently recognized as a Best Place to Work globally by Built In, Fortune, and Great Place To Work®. We are seeking a highly motivated, detail-oriented, and proactive Senior IT Compliance Analyst to support Yext's security assurance activities with customers, vendors, and internal teams. This role is responsible for responding to product security-related questions, completing security assessments and audit inquiries, and reviewing security and contract language to ensure compliance with Yext's standards. The ideal candidate will collaborate closely with Legal, Sales, and Security teams to ensure accurate, timely, and customer-focused responses while maintaining a strong compliance posture. They will bring deep knowledge of security frameworks, exceptional communication skills, and the ability to partner across business and technical teams to strengthen the organization's overall security posture.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at yext? Share your experience