Security Analyst (Remote - PST)

Our Customer is an American financial services and digital payments company based in San Francisco, California. They’re working to help their diverse audiences — sellers, individuals, artists, fans, developers, and all the people in between — overcome barriers to access the economy.

Our Customer is seeking a highly motivated Security Analyst on a contract basis for their continuous monitoring program as it relates to security reviews of their third-party vendors. This role is 100% remote in PST.

To be successful, we need someone who can complete security assessments of the existing vendors within several audit standards. This means having standard security knowledge or training, the ability to quickly understand the company infrastructure and products, and the ability to deliver an audit final assessment of vendors based on thorough research.

Responsibilities

• Review vendor use and onboarding requests
• Establish vendor risk profiles based on information provided by the intake process
• Conduct comprehensive research and case investigations on the use of the vendor across the company enterprise
• Conduct due diligence assurance activities based on vendor risk profile, including reviewing independent third-party audit reports, penetration test reports, risk assessments, internal audit reports, and other information security program assets
• Deliver work products supporting final risk decisions that are comprehensive and defensible to auditors
• Be able to ask stakeholders and external vendor personnel tough questions to drive to the correct, risk-based decision
• Work with a dynamic, fast-paced, and geographically distributed team of experts
  
  

Qualifications

• An understanding of common security risks that a third-party vendor, especially software, poses to a company
• Solid understanding of authentication and authorization frameworks
• Familiarity with SSO/SAML, OAuth, and OpenID Connect protocols
• Strong knowledge of third-party product deployments and data exchange methods
• Ability to assess various deployment models (e.g., vendor-managed cloud, on-premise solutions, plug-ins, add-ons) and associated integration methods (e.g., APIs, service accounts)
• Experience identifying the use of Generative AI within third-party products and assessing associated risks
• Familiarity with SOC2, IS27001, NIST, PCI, etc.
• Strong knowledge of risk countermeasures and compensating controls
• Experience synthesizing information from disparate sources and driving any questions to resolution
• Ability to effectively project manage and prioritize a high volume of security reviews
• A thoughtful approach to technical analysis and the ability to quickly assess new platforms
• Knowledge of ticketing systems, such as Jira, and the ability to learn new technologies or establish workarounds quickly
  
  

Preferred

• Experience working in a remote team environment
• Has conducted vendor security assessments in the past
• Curiosity and interest in learning new technologies
• Experience in customer-facing roles and gaining cooperation across a diverse set of personnel
  
  

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements)

Benefits: Medical, Dental, and 401k (no match)

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status, and will not be discriminated against on the basis of disability.

• Seniority level
  Entry level

• Employment type
  Contract

• Job function
  Information Technology
• Industries
  Technology, Information and Internet

Referrals increase your chances of interviewing at The Mom Project by 2x

Get notified about new Security Analyst jobs in United States.

United States $121,000 - $140,000 1 day ago

United States $64,000 - $112,000 1 day ago

Arlington, VA $85,000 - $145,000 1 day ago

United States $82,969 - $110,625 3 days ago

United States $82,969 - $110,625 1 day ago

Minneapolis, MN $87,000 - $156,000 11 hours ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.