Senior Customer Assurance Analyst

Are you ready to power the World's connections?

If you don’t think you meet all of the criteria below but are still interested in the job, please apply. Nobody checks every box - we’re looking for candidates that are particularly strong in a few areas, and have some interest and capabilities in others.

About the role:

The Senior Customer Assurance Analyst for Kong AI products is responsible for leading customer-facing security and compliance assurance activities while actively contributing to the development of strong, secure, and compliant AI offerings across Kong’s product portfolio.

This role acts as a product-aligned Subject Matter Expert (SME) for Kong AI products, supporting customer assurance requests, audit readiness, and cross-product collaboration. The role partners closely with Engineering, SRE, Product, Compliance, and Legal teams to ensure that AI capabilities are designed, implemented, and communicated in a way that meets customer trust expectations and regulatory requirements.

Key Responsibilities:

• Individual Contributor role with high ownership and customer-facing responsibility
• Serve as the primary Customer Assurance point of contact for Kong AI products and offerings.
• Support all customer assurance requests, including Security questionnaires, Due diligence inquiries, AI-related security and compliance questions.
• Attend customer calls as needed to explain Kong’s security posture, AI controls, data handling, and compliance practices.
• Provide clear, accurate, and customer-friendly responses tailored to AI use cases and risks.
• Act as a security and compliance advisor to Product and Engineering teams building Kong AI capabilities.

• Contribute to the design and evolution of AI features by:

  • Providing guidance on secure-by-design and compliance-by-design principles

  • Ensuring AI-related risks (e.g., data access, logging, third-party model usage, isolation, access controls) are appropriately addressed
• Help ensure AI offerings meet enterprise customer expectations for security, compliance, transparency and trustworthiness.
• Proactively surface customer feedback and assurance insights to influence AI product improvements.

• For customer requests involving two or more Kong products (e.g., Kong AI with Kong Konnect or Enterprise Gateway), collaborate with other product SMEs to deliver coordinated, consistent and high-quality assurance responses.
• Ensure alignment of AI-related assurance responses with Kong’s overall security and compliance posture.

• Cater to audit evidence requirements for Kong AI products.
• Work closely with the Compliance Program Manager to ensure ongoing audit readiness for ISO 27001, SOC 2 Type II and any other compliance frameworks in the product roadmap.
• Support external audits by validating AI offerings related controls, documentation, and evidence.
• Assist in identifying and remediating gaps related to AI security, data protection, and compliance.
• Drive the implementation of security and compliance best practices across Kong AI products.

• Ensure AI-specific risks (e.g., data handling, access control, logging, model interaction, third-party dependencies) are addressed through appropriate controls.
• Partner with Engineering and Product teams to ensure controls are embedded into product design and operations.

• Participate in and promote cross-training initiatives across Kong products.
• Share AI product knowledge with other Customer Assurance SMEs.
• Foster strong cross-functional and cross-product collaboration to reduce resource dependency and strengthen overall assurance capability.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, or a related field, or equivalent practical experience.
• 5-8 years of experience in security, compliance, GRC, or customer assurance roles supporting customer-facing security and compliance engagements
• Experience with AI security, responsible AI, or model governance
• Familiarity with frameworks such as NIST, GDPR, CSA STAR
• Certifications such as CISSP, CISA, CRISC, or ISO 27001 Lead Implementer/Auditor
• Experience with API management, developer platforms, or infrastructure security
• Experience working with SaaS and cloud-based products, preferably involving AI or data-intensive systems.

• Strong knowledge of compliance frameworks, including ISO 27001, SOC 2 Type II
• Understanding of security controls in AI-enabled and SaaS environments.
• Familiarity with data protection, privacy, and secure system design principles.
• Familiarity with API platforms, cloud-native architectures, or AI-related services

• Excellent written and verbal communication skills.

• Proven ability to collaborate across Security, Compliance, Engineering, Product, Legal, Sales, and Customer Success teams.

• This is a hybrid role, requiring three days per week in the office.

#LI-NS1

About Kong

Kong Inc., a leading developer of API and AI connectivity technologies, is building the infrastructure that powers the agentic era. trusted by the Fortune 500 and startups alike, Kong's unified API and AI platform, Kong Konnect, enables organizations to secure, manage, accelerate, govern, and monetize the flow of intelligence across APIs and AI models. For more information, visit www.konghq.com.