Risk and Compliance Analyst

Posting Type

Hybrid

Job Overview

The Risk and Compliance Analyst supports security, risk, and compliance initiatives within Relativity’s control landscape and reinforces the development and maintenance of Calder7’s security standards. These things will be key to be successful in this role:
-You are motivated to be part of an international team in a security-focused environment within the Legal Tech industry.
-You want to partner with Calder7, Engineering, and IT teams to modernize a Security Control Program.
-You want to have a real impact on the security and risk assessments of the leading Legal Data Intelligence product.
-You enjoy and thrive in cross-functional collaboration.
-You enjoy building new processes and operating procedures from the ground-up.
-You are passionate about Security and Risk Management.

Job Description and Requirements

Role Responsibilities

What are the core duties of this role?

• Coordinate the effective and efficient tracking of the company’s information security management program and compliance-related activities, including reviews, evidence tracking, performance monitoring, risk assessments. 

• Perform control testing and process audit, operational process reviews and review system implementations and applications.

• Identifying control evidence suitable for automation and partnering with control owners to replace manual submissions with system‑sourced evidence.

• Designing and maintaining integrations between GRC tooling (e.g., LogicGate) and source systems such as identity platforms, cloud infrastructure, ticketing systems, and vulnerability tools using APIs, scripts, or workflows.

• Build and recommend enhancements to the information security management program and workflow tools.

• Coordinate deployment and measurement of information security control standards across the company as appropriate.

• Maintain accurate audit control testing files and risk rating for identified exceptions. 

• Balance risk and creativity while responding quickly to business and technical opportunities.

• Demonstrate consistent commitment to core company values.

Minimum qualifications:

• Bachelor’s degree in Risk Management, Information Systems, Cybersecurity, or related field

• 1-3+ years of professional experience in risk management, internal audit, or compliance

• Familiarity with risk and control frameworks, including ISO/IEC 27001/27018 and/or comparable frameworks (e.g., NIST 800-53, SOC 2)

• Demonstrated ability to translate control requirements into repeatable, scalable technical implementations and to partner effectively with Security Engineering, IT, and Product teams to reduce manual GRC effort while improving consistency and defensibility.

• Strong written and verbal communication skills, with the ability to clearly articulate risk to technical and non-technical stakeholders

• Ability to translate complex regulatory requirements into practical, scalable solutions

• Knowledge of key principles of information technology/security general controls, including change management, access to programs and data, segregation of duties, asset management, computer operations, encryption practices and secure systems development.

• Advanced knowledge of Microsoft Office software applications.

• Strong communication and interpersonal skills.

Preferred qualifications:

• Proficiency with scripting or query languages (e.g., Python, PowerShell, SQL, or similar) and experience integrating GRC tooling with audit, ticketing, or asset management systems via APIs.

• Experience designing or supporting automated evidence collection workflows for audits, control testing, or continuous compliance programs.

• Current security certifications such as CISA (Certified Information Systems Auditor), Security+, Network+, Project+, and/or other relevant security certifications. 

• Experience working with internal/external auditors.

• Ability to work efficiently under pressure, drive projects to completion and meet deadlines.

• Strong problem-solving and critical thinking skills

Relativity is a diverse workplace with different skills and life experiences—and we love and celebrate those differences. We believe that employees are happiest when they're empowered to be their full, authentic selves, regardless how you identify.

Benefit Highlights:

Comprehensive health, dental, and vision plans

Parental leave for primary and secondary caregivers

Flexible work arrangements

Two, week-long company breaks per year

Additional time off

Long-term incentive program

Training investment program

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Relativity is committed to competitive, fair, and equitable compensation practices.

This position is eligible for total compensation which includes a competitive base salary, an annual performance bonus, and long-term incentives.

The expected salary range for this role is between following values:

120 000 and 180 000PLN

The final offered salary will be based on several factors, including but not limited to the candidate's depth of experience, skill set, qualifications, and internal pay equity. Hiring at the top end of the range would not be typical, to allow for future meaningful salary growth in this position. 

Required Skills:

Corporate Governance, Ethics, Financial Services, Fraud Detection, Internal Auditing, Regulatory Compliance, Report Writing, Risk Compliance (Inactive), Risk Management, Stakeholder Management