Security Compliance Analyst

Job description

About the Role The Security Compliance Analyst will work as a critical part of the Security Compliance Team, operating within the wider Navan Governance, Risk, Compliance, and Trust (GRCT) Team. In this role, you will ensure our continued compliance with global security regulations and industry frameworks—including GDPR, Sarbanes-Oxley ITGCs, ISO 27001, PCI DSS, and SOC 1/SOC 2. Acting as a key bridge between technical engineering teams, end users, external assessors, and international business units, you will play an essential part in safeguarding our platforms, maintaining customer trust, and scaling Navan’s global operations securely. What You’ll Do: In this role, you will protect and enhance Navan's security posture, directly furthering our company goal of providing a secure, world-class global travel and expense platform. Your typical responsibilities will include: - Coordinating and supporting internal and external security audits, technical assessments, and penetration tests across our environments. - Partnering closely with US-based compliance auditors and external audit firms; this includes a flexible schedule to work late (until 9:00 PM–10:00 PM) a few days per month on s...