Information Security Analyst

Schedule: Monday–Friday, 9:00 AM–5:00 PM Eastern Time

We're looking for a detail-oriented Security & Compliance Analyst to own and manage customer security questionnaires, RFPs, and security reviews. This role sits at the intersection of Information Security, Sales, Legal, and Engineering, helping prospective customers understand and trust our security posture.

• Own and complete customer security questionnaires, including SIG, CAIQ, VSA, and custom formats.
• Respond to RFPs and security-related RFIs, ensuring submissions are accurate, timely, and aligned with company policies.
• Collaborate closely with Sales, Legal, Engineering, and Product to gather, validate, and approve responses.
• Maintain a centralized repository of up-to-date security documentation and continuously refine responses as practices evolve.
• Serve as a subject matter expert on the company's security posture, controls, and certifications (e.g., SOC 2, ISO 27001).
• Act as a liaison between InfoSec and prospective customers during security reviews and follow-up discussions.
• Develop scalable templates and processes to streamline questionnaire and RFP responses.
• Track common questionnaire themes and insights to inform internal roadmap planning and customer communications.

\
• Experience in Information Security, Risk, Compliance, or related roles, ideally within SaaS or B2B technology.
• Hands-on experience completing third-party security questionnaires and/or working on RFP/RFI submissions.
• Strong understanding of security controls, risk management principles, and compliance frameworks.
• Excellent written and verbal communication skills, with the ability to explain complex security concepts clearly.
• Highly detail-oriented with strong organizational and project management skills.