Senior Compliance Analyst

Remote (United States) Grants Pass, OR

It's fun to work in a company where people truly believe in what they are doing. At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a difference one cup at a time.

Being part of the Dutch Family

You are adaptable, a servant leader, and community-minded. You view yourself as an unfinished product on the constant pursuit of personal and professional development. We rely on our people to uphold our core values of speed, quality, and service to protect our culture and ensure our growth remains limitless!

Dutch Bros mission statement

We are a fun-loving, mind-blowing company that makes a massive difference one cup at a time.

Who we are

Dutch Bros puts people first in everything we do. Joining our team gives you the opportunity to build a compelling future while making a massive difference in the lives of our customers and communities.

We love people and we love OUR people! Here’s what we offer

Here at Dutch Bros, we want our employees to feel valued, and we recognize there's more to value than a salary. The following benefits and perks were hand-picked to cater to our diverse employee base:

  • Medical/Dental/Vision/Short Term Disability/Life insurances
  • Paid Sick Days
  • 401(k) plan with employer match after one year of employment
  • Education Benefit Program
  • Vacation/Floating Holidays/Paid Time Off
  • Paid Parental Leave  
  • Flexible Schedule
  • Paid Volunteer Days
  • Various employee discounts
  • Office perks, such as hi-lo desks, snacks provided daily, casual dress code, and an in-house coffee bar with a dedicated Broista

Position Overview

The Senior Compliance Analyst individual works to identify, manage, and report on the company’s compliance regulatory, legislative, and contractual requirements. Responsibilities will include performing reviews, assessments, and audits; conducting research, and facilitating communication to internal and external stakeholders, where necessary. The position will monitor, coordinate, and implement policies, standards, procedures, controls, and guidelines to support security, compliance, and audit requirements.

Key Result Areas (KRAs)

Responsible for improving the Compliance Strategy and Planning to ensure successful and effective audit results:

  • Improve existing compliance programs and processes and develop new strategies and programs to ensure effective audit practices. 
  • Monitor advancements in information privacy laws to ensure organizational adaptation and compliance.
  • Work with business units and teams to establish increasingly effective and standardized security controls as they relate to NIST, SOX, PCIDSS, etc.

Responsible for Compliance and Audit Assessments both internally and externally:

  • Respond to audit and compliance testing and monitoring of current and future regulatory obligations, and other regulatory matters as required.
  • Responsible for conducting internal security risk assessments and security compliance audits and establishing audit procedures relevant to SOX, CCPA, GDPR, PCI-DSS, and others as they might be assigned.
  • Responsible for establishing, updating, and creating ITGC’s as they relate to SOX compliance.
  • Assist in developing programs and awareness to improve CCPA, GDPR, PCI, SOX processes

Responsible for developing internal and external communication standards and templates as it relates to InfoSec and Compliance:

  • Developing standards, templates, materials, reports, tools, policies, plans and strategies to effectively communicate compliance and corporate requirements.
  • Assist in fostering team mentality centered around business benefits from security initiatives.
  • Assist in growing and mentoring security talent.
  • Must be able to work with business leaders to ensure information security risk findings are reviewed and solutions are implemented.
  • Responsible for being a liaison with relevant parties to commission activities relating to contingency planning, business continuity management, and IT disaster recovery. 
  • Must respond quickly and effectively to any security incident or potential threat. The response should include a plan, potential remediation, etc, and should be within the window of contractual or industry best practice standards. 

Job Qualifications

Required Qualifications: 

  • Minimum of 5 years of IT experience, required.
  • Significant knowledge of and experience with legal and regulatory compliance standards such as [SOX, GDPR, PCI-DSS, ISO 27001, NIST 800-53, HIPAA, CCPA, etc.].
  • Experience with IT governance, risk, and compliance management.
  •  Knowledge of computer networking concepts and protocols and network security methodologies.
  • Knowledge of risk management processes (e.g. methods for assessing and mitigating risk).
  • Knowledge of cyber threats and vulnerabilities.
  • Knowledge of risk management processes.
  • Knowledge of specific operational impacts of cybersecurity lapses. 

Preferred Qualifications: 

  • CISSP, CISA, CISM, or other relevant security-related designation(s), preferred.
  • Bachelor’s degree in Computer Science or related field, preferred
  • Experience in IT in a QSR or Retail company


  • Adaptable
  • Initiative 
  • Collaborative
  • Communication
  • Effective Prioritization 
  • Functional and Tech. Expertise

Physical Requirements

  • Occasionally move or lift office items 
  • Must be able to work in an office environment 
  • Must be able to communicate in an effective manner to perform job duties
  • Constantly operates a computer and other office productivity machinery, such as calculators, copy machines, computers, and office equipment

*This position is eligible for remote work within any state Dutch Bros currently resides in (AZ, CA, CO, ID, KS, MO, NM, NV, OK, OR, TN, TX, UT, and WA)

Compensation: $92,487.73 - $107,218.62

If you like wild growth and working in a unique and fun environment, surrounded by positive community, you'll enjoy your career with us!

Subscribe to Job Alerts