OPT Security Compliance Analyst Jobs
Security Compliance Analyst jobs are a strong fit for F-1 OPT students with backgrounds in information security, risk management, or IT governance. Most roles qualify as STEM OPT extensions under CIP codes like Computer Science or Information Systems, giving you up to three years of authorized work experience.
See All OPT Security Compliance Analyst JobsOverview
Showing 5 of 91+ Security Compliance Analyst jobs
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
Have you applied for this role?
See all 91+ Security Compliance Analyst Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Security Compliance Analyst roles.
Get Access To All JobsINTRODUCTION
Founded in 2004, NetBrain is the leader in no-code network automation. Its ground-breaking Next-Gen platform provides IT operations teams with the ability to scale their hybrid multi-cloud connected networks by automating the processes associated with Diagnostic Troubleshooting, Outage Prevention and Protected Change Management. Today, over 2,500 of the world's largest enterprises and managed services providers leverage NetBrain's platform.
ROLE AND RESPONSIBILITIES
We are seeking a security and compliance leader to build and operationalize a scalable security program for our SaaS environment. This role will define policies, drive alignment with frameworks such as SOC 2, ISO 27001, and NIST, and partner cross-functionally to embed compliance into engineering, infrastructure, and business processes. You will own risk management initiatives—including third-party risk, control testing, and audit readiness—while ensuring the organization is prepared for certifications and regulatory requirements. Additionally, you will enhance our security posture through automation, continuous monitoring, and proactive improvements to mitigate evolving threats and compliance risks.
Security Program & Compliance
- Own and scale the company's SaaS security and compliance program, aligning to frameworks such as SOC 2, ISO 27001, NIST, and GDPR.
- Define and implement security policies, standards, and controls to meet regulatory and business requirements.
Risk Management & Audits
- Lead risk management efforts, including third-party risk assessments, control testing, and gap analysis.
- Drive audit readiness and execution, coordinating evidence collection and remediation for internal and external audits.
Policy Integration & Enablement
- Embed security and compliance requirements into engineering, infrastructure, and operational workflows.
- Partner cross-functionally with engineering, legal, and business teams to align on security and compliance goals.
Security Engineering & Continuous Improvement
- Partner with engineering to implement technical safeguards (e.g., access controls, logging, encryption) and automate compliance processes.
- Continuously monitor evolving threats and regulations, proactively strengthening the company's security posture.
BASIC QUALIFICATIONS
- Bachelor's degree in Computer Science, Information Security, or related field, or equivalent experience.
- 4+ years of experience in information security, compliance, or related technical roles.
- Strong knowledge of security frameworks and regulations (e.g., ISO 27001, SOC 2, NIST, PCI-DSS, HIPAA, GDPR).
- Hands-on experience with cloud environments (AWS, Azure, or GCP) and related security services.
- Familiarity with auditing, logging, monitoring, SCA, DAST, SAST and vulnerability management tools.
- Excellent documentation, communication, and collaboration skills.
PREFERRED QUALIFICATIONS
- Security certifications (e.g., CISSP, CISM, CISA, CCSK, or equivalent) preferred.
- Experience with automation tools for compliance (e.g., Terraform, Cloud Custodian, or compliance-as-code frameworks).
- Background in DevSecOps or secure software development practices preferred.
- Manual Dexterity: Repetitive motion of wrists, hands and fingers for using a computer.
- Stationary Tasks: Sitting for extended periods, remaining in a stationary position.
COMPENSATION
- For this role, the estimated base is $140,000 - $180,000 + Bonus. The actual salary may vary based on a range of factors, including market and individual qualifications objectively assessed during the interview process.
- The range listed above is a guideline and may be modified. People Experience offers a comprehensive benefits package in addition to cash compensation that includes but is not limited to 401k and medical/dental coverage. Speak with your Recruiter for more details on our Total Rewards philosophy.
NetBrain invites all interested and qualified candidates to apply for employment opportunities.
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or other characteristics protected by law.
If you have a disability that prevents or limits your ability to use or access the site, or if you require any other accommodation in the application process due to a disability, you may request a reasonable accommodation. To make a request, please contact our People Team at: people@netbraintech.com and we will be happy to assist you.
In compliance with applicable laws, NetBrain conducts holistic, individual background reviews in support of all hiring decisions.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
INTRODUCTION
Founded in 2004, NetBrain is the leader in no-code network automation. Its ground-breaking Next-Gen platform provides IT operations teams with the ability to scale their hybrid multi-cloud connected networks by automating the processes associated with Diagnostic Troubleshooting, Outage Prevention and Protected Change Management. Today, over 2,500 of the world's largest enterprises and managed services providers leverage NetBrain's platform.
ROLE AND RESPONSIBILITIES
We are seeking a security and compliance leader to build and operationalize a scalable security program for our SaaS environment. This role will define policies, drive alignment with frameworks such as SOC 2, ISO 27001, and NIST, and partner cross-functionally to embed compliance into engineering, infrastructure, and business processes. You will own risk management initiatives—including third-party risk, control testing, and audit readiness—while ensuring the organization is prepared for certifications and regulatory requirements. Additionally, you will enhance our security posture through automation, continuous monitoring, and proactive improvements to mitigate evolving threats and compliance risks.
Security Program & Compliance
- Own and scale the company's SaaS security and compliance program, aligning to frameworks such as SOC 2, ISO 27001, NIST, and GDPR.
- Define and implement security policies, standards, and controls to meet regulatory and business requirements.
Risk Management & Audits
- Lead risk management efforts, including third-party risk assessments, control testing, and gap analysis.
- Drive audit readiness and execution, coordinating evidence collection and remediation for internal and external audits.
Policy Integration & Enablement
- Embed security and compliance requirements into engineering, infrastructure, and operational workflows.
- Partner cross-functionally with engineering, legal, and business teams to align on security and compliance goals.
Security Engineering & Continuous Improvement
- Partner with engineering to implement technical safeguards (e.g., access controls, logging, encryption) and automate compliance processes.
- Continuously monitor evolving threats and regulations, proactively strengthening the company's security posture.
BASIC QUALIFICATIONS
- Bachelor's degree in Computer Science, Information Security, or related field, or equivalent experience.
- 4+ years of experience in information security, compliance, or related technical roles.
- Strong knowledge of security frameworks and regulations (e.g., ISO 27001, SOC 2, NIST, PCI-DSS, HIPAA, GDPR).
- Hands-on experience with cloud environments (AWS, Azure, or GCP) and related security services.
- Familiarity with auditing, logging, monitoring, SCA, DAST, SAST and vulnerability management tools.
- Excellent documentation, communication, and collaboration skills.
PREFERRED QUALIFICATIONS
- Security certifications (e.g., CISSP, CISM, CISA, CCSK, or equivalent) preferred.
- Experience with automation tools for compliance (e.g., Terraform, Cloud Custodian, or compliance-as-code frameworks).
- Background in DevSecOps or secure software development practices preferred.
- Manual Dexterity: Repetitive motion of wrists, hands and fingers for using a computer.
- Stationary Tasks: Sitting for extended periods, remaining in a stationary position.
COMPENSATION
- For this role, the estimated base is $140,000 - $180,000 + Bonus. The actual salary may vary based on a range of factors, including market and individual qualifications objectively assessed during the interview process.
- The range listed above is a guideline and may be modified. People Experience offers a comprehensive benefits package in addition to cash compensation that includes but is not limited to 401k and medical/dental coverage. Speak with your Recruiter for more details on our Total Rewards philosophy.
NetBrain invites all interested and qualified candidates to apply for employment opportunities.
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, or other characteristics protected by law.
If you have a disability that prevents or limits your ability to use or access the site, or if you require any other accommodation in the application process due to a disability, you may request a reasonable accommodation. To make a request, please contact our People Team at: people@netbraintech.com and we will be happy to assist you.
In compliance with applicable laws, NetBrain conducts holistic, individual background reviews in support of all hiring decisions.
It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.
See all 91+ OPT Security Compliance Analyst Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new OPT Security Compliance Analyst Jobs.
Get Access To All JobsTips for Finding OPT Sponsorship as a Security Compliance Analyst
Lead with your certifications
CompTIA Security+, CISA, or CISSP credentials signal technical credibility immediately. Hiring managers in compliance roles filter for certifications before experience level, so listing them prominently on your resume helps you clear the first screening round.
Target regulated industries
Healthcare, financial services, and government contractors hire compliance analysts at higher volumes and have structured immigration support processes. These sectors must maintain ongoing compliance programs, which means consistent demand for your role regardless of broader hiring cycles.
Understand your STEM OPT eligibility
Security Compliance Analyst roles typically qualify for the 24-month STEM extension when your degree is in Computer Science, Information Systems, or Cybersecurity. Confirm your CIP code with your DSO before accepting an offer to avoid surprises.
Frame your thesis or coursework as work experience
If you audited systems, built compliance frameworks, or conducted risk assessments academically, describe those projects in work-experience language. Compliance hiring managers evaluate evidence of analytical process, not just job titles from previous employers.
Ask about E-Verify enrollment before applying
STEM OPT extensions require your employer to be enrolled in E-Verify. Confirm this during early conversations rather than after an offer. Most large enterprises already participate, but midsize firms sometimes need to register before your start date.
Connect your role to a specific compliance framework
Tailor your resume and cover letter to the framework the employer uses, whether SOC 2, ISO 27001, NIST, HIPAA, or PCI-DSS. Demonstrating framework fluency in your application shows you can contribute from day one without an extended ramp-up period.
Security Compliance Analyst OPT: Frequently Asked Questions
Does a Security Compliance Analyst role qualify for STEM OPT extension?
Most Security Compliance Analyst positions qualify for the 24-month STEM OPT extension, provided your degree falls under an eligible CIP code such as Computer Science, Information Systems, Cybersecurity, or a related STEM field. Your employer must also be enrolled in E-Verify. Confirm your specific CIP code with your Designated School Official before relying on this extension.
How do I find Security Compliance Analyst jobs that sponsor OPT?
Migrate Mate filters job listings specifically for employers willing to sponsor F-1 OPT students, which saves you from applying to roles where your work authorization will be an immediate obstacle. Security Compliance Analyst openings are common in financial services, healthcare technology, and enterprise software companies, all of which tend to have established immigration support infrastructure.
Will my compliance role count toward H-1B specialty occupation requirements?
Security Compliance Analyst roles generally meet the H-1B visa specialty occupation standard because they require at least a bachelor's degree in a specific technical field like Information Systems, Computer Science, or Cybersecurity. Roles tied to recognized frameworks such as SOC 2, NIST, or ISO 27001 strengthen this argument because the technical complexity is well-documented and widely accepted by USCIS adjudicators.
Can I work as a Security Compliance Analyst on pre-completion OPT?
Yes. Pre-completion OPT allows part-time work of up to 20 hours per week while school is in session, or full-time during official breaks. A compliance analyst role that fits within those hour limits is authorized. Confirm the employment start date and hours with your DSO so your EAD reflects the correct authorization period before your first day.
What degree fields support a Security Compliance Analyst OPT application?
Degrees in Computer Science, Information Systems, Cybersecurity, Management Information Systems, and Computer Engineering are the strongest fits. Some programs in Business with an IT concentration also qualify if the CIP code is STEM-designated. If your degree is in a non-STEM field like Political Science or Business Administration without a STEM CIP, you may only receive the standard 12-month OPT period rather than the 36-month STEM extension.