Analyst, Information Security

About The Position

Requirements

• 1–2 years of experience developing or deploying security technologies (internships and academic projects count).
• Familiarity with modern software development practices and CI/CD pipelines.
• Experience using vulnerability scanning tools (SAST, SCA, mobile scanning, API scanning) and handling basic remediation.
• Foundational understanding of public cloud platforms (AWS, Azure, or GCP) and core network security concepts.
• Exposure to Docker, Kubernetes, Security‑as‑Code, or Infrastructure‑as‑Code tools.
• Experience with at least one programming or scripting language (Java, Python, C#, JavaScript, Shell, PowerShell, etc.).
• Interest in data protection, encryption, and privacy regulations (GDPR, CCPA).
• A Bachelor’s degree in Computer Science, Software Development, Software Engineering, or a related field, or equivalent alternative education, skills, and/or practical experience is required.

Nice To Haves

• Familiarity with cloud architecture concepts.
• Understanding of networking fundamentals and software‑defined networking (SDN).
• Ability to read or create basic network, sequence, or data flow diagrams.
• Awareness of the OWASP Application Security Verification Standard (ASVS).
• Experience collaborating with remote or distributed teams.
• Knowledge of compliance frameworks such as HIPAA, HITRUST, PCI, NIST, or CSA.
• Exposure to security tools like GitHub Advanced Security, CodeQL, Checkmarx, or Snyk.
• Interest in building resilient, fault‑tolerant systems in cloud environments.

Responsibilities

• Help develop and maintain engineering and data security policies and standards.
• Contribute to security awareness efforts across the organization.
• Support Engineering and Business teams in applying secure engineering practices.
• Assist with application security reviews and participate in security discussions.
• Learn how to integrate security into each stage of the software development lifecycle.
• Assist in configuring and analyzing security tools across cloud and on‑prem environments.
• Support security testing, vulnerability analysis, and documentation.
• Participate in an on‑call rotation with guidance and mentorship.
• Help develop incident response procedures and learn recovery strategies.

Benefits

• Affordable medical plan options, a 401(k) plan (including matching company contributions), and an employee stock purchase plan.
• No-cost programs for all colleagues including wellness screenings, tobacco cessation and weight management programs, confidential counseling and financial coaching.
• Benefit solutions that address the different needs and preferences of our colleagues including paid time off, flexible work schedules, family leave, dependent care resources, colleague assistance programs, tuition assistance, retiree medical access and many other benefits depending on eligibility.