Senior Cloud Compliance Analyst - Cloud Security

US - VA - Arlington


US - VA - Arlington, US - Remote


Product & Engineering

Cloud Compliance Analyst - Cloud Security

Company Description

Rapid7 is helping organizations around the globe advance securely and support secure innovation for digital transformation and cloud adoption. Our technology, services, and community-focused research simplify complexity for security teams, helping them reduce risk, monitor for malicious behavior, investigate and address risk, and automate remediation. With more than 7,900 customers across 120 countries, Rapid7 is a recognized leader in cybersecurity that has proudly earned numerous industry accolades and strong recognition for our technology and culture. Learn more at

The Opportunity

Come impact our customer's cloud journey by analyzing, defining and aligning our Cloud Native Security Platform with leading compliance frameworks and security best practices. Rapid7 is seeking a talented compliance and security analyst to join the product team and help shape the future of cloud security. The ideal candidate will have a background in IT compliance and security standards and the ability to apply them to modern public cloud infrastructure and DevOps practices.  

You must be able to thrive in a fast-paced environment while demonstrating excellent research, analysis, and communication skills.  You will work closely with product, engineering and marketing teams to identify and prioritize opportunities for new and expanding coverage related to high priority compliance and security standards. 

This position reports to the Sr. Director of Product Management. This candidate will ideally be based in the DC Metro area but remote candidates are encouraged to apply.

If you are looking for an opportunity to learn and build expertise in the fast growing market of cloud security; and deliver impact and value to some of the most sophisticated enterprise customers in the world, this could be the role for you!

The Role

  • Create, update and maintain InsightCloudSec checks and compliance packs to align with leading compliance frameworks and cloud security best practices. 

  • Proactively research emerging cloud compliance and security issues across major public cloud platforms (AWS, Azure, GCP, Alibaba Cloud, Oracle, etc.) as well as Kubernetes and container technologies. 

  • Evaluate updates and opportunities to expand support for leading compliance frameworks such as CIS Benchmarks, NIST, ISO, PCI and others.

  • Work closely with product managers and engineering teams to develop new insights and policy definitions within the InsightCloudSec platform aligned with emerging issues or compliance framework updates. 

  • Partner with product marketing, sales and sales engineering to promote the depth and breadth of our coverage.

  • Partner with UX design and engineering teams to ensure the best possible user experiences and customer value. 

Qualifications and Traits

  • 3+ years of experience in technology compliance and security analysis

  • Strong curiosity, thirst for knowledge and ability to learn quickly

  • Excellent communication skills, detailed focus and highly collaborative

  • Knowledge and experience related to Public Cloud and/or Kubernetes a huge plus

  • Ability to work in a fast-paced dynamic environment with shifting priorities