Information Security Analyst II - Commercial Audit

About Datadog

We're on a mission to build the best platform in the world for engineers to understand and scale their systems, applications, and teams.  We operate at high scale—trillions of data points per day—providing always-on alerting, metrics visualization, logs, and application tracing for tens of thousands of companies. Our engineering culture values pragmatism, honesty, and simplicity to solve hard problems the right way.

About the Opportunity

Datadog is hiring an Information Security Analyst II to support both our SOX program and international audit initiatives, with an even split of responsibilities. In the short term, the role will focus on improving SOX processes and supporting audits in the Asia-Pacific (APAC) region, specifically ISMAP and IRAP. Over time, there will be opportunities to work with other key frameworks, including ISO, SOC, PCI, TISAX, and HIPAA. This position reports to the Manager of GRC, who leads Datadog’s commercial compliance efforts. The role plays a critical part in ensuring our compliance strategy aligns with business and revenue objectives.

In this position, you will be instrumental in executing complex compliance audits and supporting governance initiatives across multiple frameworks. You will work closely with engineering, product, and business units to translate regulatory requirements into actionable and pragmatic outcomes. This role requires a balance of technical knowledge and strategic insight, making it ideal for addressing our most complex and nuanced challenges.

At Datadog, we place value in our office culture - the relationships and collaboration it builds and the creativity it brings to the table. We operate as a hybrid workplace to ensure our Datadogs can create a work-life harmony that best fits them.

What You Will Do:

• Help create and support Datadog’s ISMAP and IRAP audit programs, including end-to-end certification efforts.
• Assist in performing audit gap analyses and work with engineering teams to architect solutions to identified gaps.
• Provide operational audit support for audits led by other team members - primarily SOX but also ISO, SOC, PCI, TISAX, etc..
• Collaborate with various teams to ensure compliance with security and regulatory standards.
• Engage with engineering and product teams to develop compliance solutions that support business objectives.
• Employ "pull once, serve many" strategies for efficient evidence gathering and compliance management.
• Collaborate with cross-functional partner teams to explore and implement opportunities for automating evidence collection processes.

Who You Are:

• Experienced in leading and supporting compliance audits, preferably with direct management of an ISMAP assessment.
• Skilled in translating complex regulatory requirements into clear, actionable plans.
• Honest, humble, and transparent, with a natural ability to motivate and influence others.
• A team player who thrives on collaboration and enjoys working across cross-functional teams to build alignment and achieve success.
• Exceptional communicator with a proven ability to articulate compliance and security issues succinctly.
• Comfortable in a dynamic, fast-paced environment, navigating ambiguity with optimism and focus.
• A positive, optimistic outlook and a drive to enact meaningful change.

Bonus Points

• Experience with leading an IRAP assessment.
• Experience with SOX control design and related audits.
• Experience in leading an ISO audit or assessment process.
• Experience in multi-cloud or containerized environments.
• Relevant certifications such as ISO 27001 Lead Auditor/Implementer, QSA, or AICPA SOC Auditor.
• Technical background in IT systems, software development, or security controls implementation.
• Demonstrated ability to align compliance activities with broader business goals while maintaining strong stakeholder relationships.

If you are passionate about leveraging security and compliance to drive business success and enjoy building scalable, impactful programs, we encourage you to apply for this role at Datadog!