Back to jobs

Security Compliance Analyst

San Francisco, CA

Biotechnology is rewriting life as we know it, from the medicines we take, to the crops we grow, the materials we wear, and the household goods that we rely on every day. But moving at the new speed of science requires better technology.

Benchling’s mission is to unlock the power of biotechnology. The world’s most innovative biotech companies use Benchling’s R&D Cloud to power the development of breakthrough products and accelerate time to milestone and market. 

Come help us bring modern software to modern science.

ROLE OVERVIEW

As a Security Compliance Analyst at Benchling, you will be joining a team responsible for supporting the security program and safeguarding highly sensitive scientific research and development data. You will collaborate with engineers and auditors to ensure that we can effectively meet our security compliance controls as well as enhance our overall program. We're looking for candidates who are excited to apply their skills to building and maintaining security compliance programs that will scale with Benchling to meet our internal and external objectives.

RESPONSIBILITIES

  • Maintain comprehensive compliance programs for SOC 2 Type 2, ISO 27001/17/18 (or relevant ISO standards), and other applicable security frameworks.
  • Conduct regular risk assessments and internal audits to identify compliance gaps and recommend remediation measures.
  • Manage the end-to-end process for external audits, including coordinating with auditors, providing necessary documentation, and tracking remediation efforts.
  • Develop and maintain comprehensive documentation, including ISMS policies, procedures and controls descriptions
  • Act as a liaison between internal teams and external auditors or customers.
  • Monitor changes in regulatory requirements and industry standards, and ensure the organization’s compliance programs are updated accordingly.
  • Serve as the subject matter expert for security and security compliance-related inquiries in customer RFPs and security questionnaires.
  • Work closely with cross-functional teams, including engineering, business technology, legal and human resources, to ensure compliance requirements are integrated into key business processes.
  • Monitor and report on key compliance metrics and relevant compliance remediation efforts
  • Maintain a third-party risk management program, including vendor risk assessments, due diligence, and ongoing monitoring.
  • ​​Contribute to the development and implementation of security awareness programs.

QUALIFICATIONS

  • 3-5 years of experience in Security Compliance or a related role, with exposure to various security tools and technologies.
  • Minimum 3+ years leading industry standard (ISO 27001, SOC 2) security audits from either side
  • Strong knowledge of applicable privacy laws (CCPA/GDPR)
  • Strong knowledge of security frameworks and standards including NIST, ISO 27001, and SOC 2.
  • Experience with GRC tools such as Drata, Hyperproof, or Anecdotes.
  • Experience working in a cloud-based environment (i.e AWS, Azure, GCP)
  • A collaborative mindset with the ability to work cross-functionally with other teams, including software and infrastructure engineering.
  • Strong communication skills, with the ability to articulate security compliance issues and solutions to both technical and non-technical audiences.

HOW WE WORK

Flexible Hybrid Work: We offer a flexible hybrid work arrangement that prioritizes in-office collaboration. Employees are expected to be on-site 3 days per week.

SALARY RANGE

Benchling takes a market-based approach to pay.  The candidate's starting pay will be determined based on job-related skills, experience, qualifications, interview performance, and work location. For this role the base salary range is $114,000 - $150,000. 

To help you determine which zone applies to your location, please see this resource. If you have questions regarding a specific location's zone designation, please contact a recruiter for additional information.

Total Compensation includes the following:

  • Competitive total rewards package
  • Broad range of medical, dental, and vision plans for employees and their dependents
  • Fertility healthcare and family-forming benefits
  • Four months of fully paid parental leave
  • 401(k) + Employer Match
  • Commuter benefits for in-office employees and a generous home office set up stipend for remote employees
  • Mental health benefits, including therapy and coaching, for employees and their dependents
  • Monthly Wellness stipend
  • Learning and development stipend
  • Generous and flexible vacation
  • Company-wide Winter holiday shutdown
  • Sabbaticals for 5-year and 10-year anniversaries

#LI-Hybrid 

#BI-Hybrid

#LI-EN1

Benchling welcomes everyone. 

We believe diversity enriches our team so we hire people with a wide range of identities, backgrounds, and experiences. 

We are an equal opportunity employer. That means we don’t discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We also consider for employment qualified applicants with arrest and conviction records, consistent with applicable federal, state and local law, including but not limited to the San Francisco Fair Chance Ordinance.

 

Please be aware that Benchling will never request personal information, payment, or sensitive details outside of Greenhouse or via email. All official communications will come from an @benchling.com email address or from an approved vendor alias. If you are contacted by someone claiming to represent Benchling and are unsure of their legitimacy, please reach out to us at recruiting-fraud-alert@benchling.com to verify the communication.

 

Apply for this job

*

indicates a required field

Resume/CV

Accepted file types: pdf, doc, docx, txt, rtf

Cover Letter

Accepted file types: pdf, doc, docx, txt, rtf

Select...
Select...
Select...
Select...

U.S. Voluntary Demographic Questionnaire:

At Benchling we are committed to diversity, equity and inclusion. We understand the value of building teams that represent different identities, lived experiences, and perspectives. We also understand that in order to realize this value, we must be intentional.

To get a comprehensive understanding of our pipeline, we invite all applicants to fill out these demographic questions. Completion of this form is entirely voluntary and declining to provide this information will not subject you to adverse treatment. All responses to this survey will be kept anonymous. 

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Select...
Select...
Select...
Select...
Select...
Select...
Select...

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Benchling’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Select...
Select...
Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
Select...

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.