Read More
Raymond Cheng, Founder and CEO of Decrypt, named as one of Forbes’ Best In-State CPA for 2026
Logo for Decrypt Compliance with the word Decrypt in bold uppercase letters, featuring a stylized backward R. The word Compliance appears below in smaller uppercase letters with a teal underline.
Contact us

Careers

Great Client Work Starts with Great People

The people behind our audits are the most important part of what clients pay for. That’s why we hire deliberately, search globally, and take the long view on every hire we make.
Logo of the California Board of Accountancy with large blue letters CBA above the words California Board of Accountancy in blue on a white background.
California CPA License #9491
A blue circular badge with AICPA SOC in white text, aicpa.org/soc4so below, and SOC for Service Organizations along the bottom edge.
AICPA Accredited
A green oval badge with the text Status: Active at the top, IAF in large letters over a globe, and IAFCERTSEARCH.ORG at the bottom.
Accredited ISO 27001 Auditor
The HITRUST logo with the words Validated Assessor written beneath it in green text.
Authorized HITRUST Assessment Provider

Why We Hire the Way We Do

Hiring is a quality decision, not an HR function.

Our clients trust us with security, privacy, and compliance work that carries real weight. The professionals we put on that work reflect our standards – and our reputation. A strong audit process only goes as far as the judgment and care of the person running it.

We don’t fill roles. We build a team. There’s a difference, and our clients feel it.

Current Openings

Senior Penetration Tester

  • Security Auditing
  • Remote / New York
  • Full-time
Lead comprehensive security assessments for enterprise clients, identifying vulnerabilities .

Key Requirements:

  • 5+ years of penetration testing experience
  • OSCP, CEH, or equivalent certifications
  • Expertise in web application, network, and cloud security
Apply Now

Cybersecurity Compliance Analyst

  • Compliance & Governance
  • Austin, TX
  • Full-time
Ensure client organizations meet regulatory requirements and industry standards including SOC 2, ISO 27001, HIPAA, and GDPR.

Key Requirements:

  • 3+ years in compliance or audit roles
  • Knowledge of SOC 2, ISO 27001, NIST frameworks
  • Experience conducting security assessments
Apply Now

Security Auditor

  • Security Auditing
  • San Francisco, CA
  • Full-time
Perform detailed security audits of client infrastructure, applications, and processes.

Key Requirements:

  • 2+ years security audit experience
  • Understanding of security frameworks and standards
  • Experience with vulnerability assessment tools
Apply Now

Cloud Security Specialist

  • Cloud Security
  • Remote
  • Full-time
Assess and secure cloud environments across AWS, Azure, and GCP, ensuring best practices and compliance with security standards.

Key Requirements:

  • 4+ years cloud security experience
  • Deep knowledge of AWS, Azure, or GCP security
  • Experience with cloud security tools and CSPM platforms
Apply Now

Security Audit Consultant

  • Consulting
  • Chicago, IL
  • Full-time
Work directly with clients to understand their security posture, conduct risk assessments, and deliver actionable security roadmaps.

Key Requirements:

  • 3+ years consulting experience
  • Strong understanding of enterprise security
  • Excellent client-facing and presentation skills
Apply Now

Incident Response Analyst

  • Incident Response
  • Remote / Boston
  • Full-time
Support clients during security incidents, conducting forensic analysis, threat hunting, and developing incident response plans.

Key Requirements:

  • 2+ years incident response experience
  • Experience with SIEM tools and log analysis
  • Knowledge of malware analysis and threat intelligence
Apply Now
  • Security Auditing
  • Remote / New York
  • Full-time
Lead comprehensive security assessments for enterprise clients, identifying vulnerabilities .
Apply Now

Key Requirements:

  • 5+ years of penetration testing experience
  • OSCP, CEH, or equivalent certifications
  • Expertise in web application, network, and cloud security
  • Compliance & Governance
  • Austin, TX
  • Full-time
Ensure client organizations meet regulatory requirements and industry standards including SOC 2, ISO 27001, HIPAA, and GDPR.
Apply Now

Key Requirements:

  • 3+ years in compliance or audit roles
  • Knowledge of SOC 2, ISO 27001, NIST frameworks
  • Experience conducting security assessments
  • Security Auditing
  • San Francisco, CA
  • Full-time
Perform detailed security audits of client infrastructure, applications, and processes.
Apply Now

Key Requirements:

  • 2+ years security audit experience
  • Understanding of security frameworks and standards
  • Experience with vulnerability assessment tools
  • Cloud Security
  • Remote
  • Full-time
Assess and secure cloud environments across AWS, Azure, and GCP, ensuring best practices and compliance with security standards.
Apply Now

Key Requirements:

  • 4+ years cloud security experience
  • Deep knowledge of AWS, Azure, or GCP security
  • Experience with cloud security tools and CSPM platforms
  • Consulting
  • Chicago, IL
  • Full-time
Work directly with clients to understand their security posture, conduct risk assessments, and deliver actionable security roadmaps.
Apply Now

Key Requirements:

  • 3+ years consulting experience
  • Strong understanding of enterprise security
  • Excellent client-facing and presentation skills
  • Incident Response
  • Remote / Boston
  • Full-time
Support clients during security incidents, conducting forensic analysis, threat hunting, and developing incident response plans.
Apply Now

Key Requirements:

  • 2+ years incident response experience
  • Experience with SIEM tools and log analysis
  • Knowledge of malware analysis and threat intelligence

Don't see a fit right now?

We’re always open to hearing from motivated, service-minded compliance professionals. If this sounds like the kind of firm you want to grow with, we’d like to hear from you.

Start a Conversation

Who Are We Looking for at Decrypt Compliance

We look for more than credentials.

Experience matters. So does how someone thinks through a hard problem, how they communicate under pressure, and how accountable they hold themselves when no one is watching.
We want professionals who are:
  • Driven to keep improving, not satisfied with good enough
  • Service-minded in how they show up for clients and colleagues
  • Practical and clear when problems get complicated
  • Accountable for outcomes, not just outputs
  • Excited to build something that lasts
We search broadly because quality matters more than geography. Our team works across time zones, serves clients in multiple countries, and brings a range of perspectives to every engagement – and that makes us better auditors.
If you want to grow inside a modern compliance firm that treats its people as central to the client experience – not incidental to it – you’ll fit here.

Our Talent Partner

We take hiring seriously enough to invest in it.

Decrypt works with Peter Saalfield, an experienced GRC recruiting professional who knows this market well. He helps us find people who align with our standards, our way of working, and where we’re headed – not just who’s available.
I am a New York-based reporter for Citywire USA. I was previously a senior vice president at the independent public relations firm Marathon Strategies, an associate producer for the PBS/AOL documentary project “MAKERS: Women Who Make America.”
Recruiting at Decrypt is a strategic investment. We move deliberately, search broadly, and don’t settle because a role needs to be filled fast.

Get Started

Ready to Get Certified and Close More Deals?

Tell us about your company and we’ll get back to you with a clear path to certification – including timeline and pricing.

  • Submit the form and we'll reach out within one business day
  • We'll book a short discovery call to understand your environment and goals
  • You'll receive a fixed-fee quote with a clear timeline and next steps

Consultation form

Name(Required)