Information Security Analyst
United States
Guideline is looking for an Information Security Analyst to join our Security Team. In this role, you will assist with a variety of Security, IT, and GRC initiatives.
You Will
- Collaborate effectively with cross-functional teams to ensure security is integrated into all aspects of the business.
- Work with end-users to educate, assist, and resolve Security issues and concerns
- Execute operational workflows, contribute to constant improvement efforts, and contribute to documentation of several of the Security Team’s key initiatives, including:
- Guideline’s vendor management program, including vendor due diligence
- Security and fraud incident investigations
- Security audits like SOC 2 Type 2; including collecting and organizing evidence requested by external auditors
- Security systems and logs monitoring, security events analysis, and incident escalation and documentation
- Security policy, standards, and procedures development and maintenance
- Vulnerability scans and penetration testing tracking, reporting, and remediation
What We're Looking For
- 3+ years industry experience in compliance, fraud, IT and/or information security, including familiarity with security principles and best practices.
- Understanding of cybersecurity risk, paired with the ability to partner with risk owners to communicate those risks effectively.
- Experience with one or more security or compliance frameworks like SOC, PCI-DSS, or NIST CSF.
- Experience in the financial services industry or other regulated industry (e.g. healthcare) is a plus.
- Excellent verbal and written communication skills, the ability to communicate up, down, and across, while tailoring the message accordingly.
You do not need to be an expert in all of these areas to apply. We value individuals with grit and a growth mindset and will consider someone with the fundamentals who is willing to learn and further their skill set.
Compensation
At Guideline, we believe compensation should be fair and equitable. We take a data-driven approach to set our compensation bands; the successful candidate’s starting pay will be determined based on job-related skills, experience, qualifications, and work location. We are always evaluating our pay zones to be as competitive as possible, so keep in mind these may be subject to change in the future.
Please speak with a recruiter for additional information regarding our tier locations and compensation philosophy
- Metro+: The base salary range for this position is $116,000-$131,000 annually
- Metro: The base salary range for this position is $112,500-$127,500 annually
- National: The base …
This job isn't fresh anymore!
Search Fresh JobsJob Profile
401(k) Plan Company paid disability Comprehensive benefits Dental Disability Insurance Equity Flexible Spending Account Flexible time off Learning stipend Life Insurance Medical Mental health support Paid parental leave Paid sabbatical Parental leave Professional development Sabbatical after 5 years Vision Vision Insurance
Tasks- Collaborate with teams
- Conduct vulnerability scans
- Contribute to documentation
- Develop security policies
- Educate end users
- Monitor security systems
- Security audits
- Vendor management
Communication Compliance Cybersecurity Documentation Financial Services Fraud GRC Incident Response Information security IT Monitoring NIST CSF PCI DSS Penetration Testing Security audits Security Monitoring Security Policy Development SOC Vulnerability scans Written communication
Experience3 years
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9