Security Questionnaire & Compliance Analyst (Junior) | REMOTE

Title: Security Questionnaire & Compliance Analyst (Junior)
Schedule: Monday–Friday, 9:00 AM–5:00 PM Eastern Time
Apply here:https://operationsarmy.com/application

Overview

We're looking for a detail-oriented junior Information Security professional to help review and complete customer security questionnaires, RFPs, and security reviews. This is a great opportunity for someone early in their InfoSec or GRC career to gain hands-on experience at an AI-driven startup while working closely with our Security, Sales, Legal, and Engineering teams.

What You'll Do

• Review and complete customer security questionnaires (e.g., SIG, CAIQ, VSA, and custom formats) with high accuracy
• Assist with security-related sections of RFPs and RFIs, ensuring responses are clear, consistent, and submitted on time
• Partner with Sales, Legal, Engineering, Product, and Security to gather and confirm required information
• Maintain a centralized, up-to-date repository of security documentation, FAQs, and standard responses
• Learn and document security controls, processes, and certifications (e.g., SOC 2, ISO 27001)
• Support follow-up security reviews by tracking questions, clarifications, and approvals
• Help build templates, checklists, and lightweight processes to improve future response efficiency

What We're Looking For

• 0–2 years of experience in Information Security, GRC, Risk, Compliance, IT Audit, or a related field (internships and project work count).
• Exposure to security concepts and frameworks (e.g., SOC 2, ISO 27001, NIST, CIS) through work experience, coursework, or certifications.
• Bonus: experience with third‑party security questionnaires or RFP/RFI responses, even in a supporting role.
• Strong attention to detail and the ability to proofread for consistency, accuracy, and completeness.
• Excellent written and verbal communication skills, with a knack for explaining technical ideas in clear, simple language.
• Highly organized, comfortable tracking multiple requests at once, and reliable with deadlines.
• Curiosity and a desire to learn more about information security and how SaaS/AI companies manage risk.

Why This Role Is Exciting

• High visibility: Work directly with Security, Sales, Legal, and Engineering teams
• Learning opportunity: Hands-on exposure to real customer security reviews and frameworks

• Impact: Help build customer trust and accelerate deals

• Growth: Opportunity to advance into broader InfoSec, GRC, or security operations roles