Cybersecurity Analyst

I'm Joe Hurshman, Manager, Security & IT at Teamworks. We're a SOC 2, ISO 27001, and PCI DSS shop, and keeping that compliance posture tight as we grow is something I take seriously. Right now I need someone who can own the day-to-day execution of our GRC program so we're always audit-ready, not scrambling when an assessment comes around.

This is a high-autonomy role. You'll work closely with me, but you won't be waiting for direction — you'll be driving evidence collection, closing gaps, and partnering across Engineering, IT, and Sales to make sure controls are in place and documented. If you're someone who finds energy in bringing order to compliance complexity, this is a good fit.

• Own end-to-end audit cycles across SOC 2, ISO 27001, and PCI DSS, including scoping, evidence collection, assessor coordination, and finding remediation

• Lead gap analysis and keep audit-ready documentation and policies current in the trust center

• Drive continuous monitoring obligations, including PCI DSS monthly reporting and SAQ completion

• Partner with IT, Engineering, and Sales to implement security controls and turn around vendor security questionnaires

• Maintain risk registers and incident playbooks as the business and threat landscape evolve

• 3+ years of hands-on GRC experience with proven end-to-end audit cycle management across SOC 2, ISO 27001, and/or PCI DSS — at least one of these should be something you've run start to finish on your own

• Hands-on experience with a GRC automation platform (Drata, Vanta, Anecdotes, or equivalent)

• Experience with trust portal and questionnaire management tooling (SafeBase, Responsive, or equivalent)

• Strong written communication skills — the policies and documentation you produce need to hold up under auditor scrutiny

• Proven ability to manage multiple compliance workstreams independently with minimal oversight

• Ability to automate repetitive compliance processes

• You have familiarity with NIST CMMC, FERPA, HIPAA, or TX-RAMP/GovRAMP

• You've worked with vulnerability management platforms (Wiz, Tenable, Qualys, or equivalent)

• You're comfortable using AI-assisted tools to accelerate documentation and GRC workflows

Teamworks serves professional, collegiate, Olympic, and military organizations, which means our compliance obligations are real and the stakes are high. The person in this role will have direct ownership of programs that matter to every customer conversation we have, with the autonomy to improve how we operate and build something they can genuinely be proud of.

We're the Operating System for Sports™, powering 6,500+ organizations worldwide, from collegiate programs to every major pro league. Founded in 2006, we've evolved from a messaging tool for college football into the leading sports tech platform, with 500+ global teammates building the future of sports tech. Our solutions span Personnel, Coaching, Performance, Operations, and Intelligence - helping teams recruit smarter, train better, stay compliant, and win.
Teamworks is an equal opportunity employer - if you live our core values every day and are honest, hardworking, humble, committed, innovative, and an all-around exceptional person, you'll thrive at Teamworks. We are committed to building a diverse and inclusive workforce and take affirmative action to not discriminate based on race, religion, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, gender, gender identity, gender expression, age, sexual orientation, veteran or military status, or any other legally protected characteristics. This policy applies to all employment practices within our organization, including but not limited to recruiting, hiring, promotion, termination, compensation, benefits, and training. Teamworks is committed to providing reasonable accommodations for candidates with disabilities who need assistance during the hiring process. To request a reasonable accommodation, please email [email protected].

To all recruitment agencies: Teamworks does not accept agency resumes. Please do not forward resumes to our jobs alias, Teamworks employees or any other organization location. Teamworks is not responsible for any fees related to unsolicited resumes.