Senior Security Analyst (Remote)

Apply for this position Please mention DailyRemote when applying
Posted 6 days ago United States Salary undisclosed
Before you apply - make sure the job is legit.

Attempting to apply for jobs might take you off this site to a different website not owned by us. Any consequence as a result for attempting to apply for jobs is strictly at your own risk and we assume no liability.

Job Description

Job Description:
Zapproved is seeking a Senior Security Analyst to join our fast-growing Software-as-a-Service company. In this capacity, you will serve as part of a team focused on assessing, improving and maintaining security for Zapproved and ensuring that we maintain strong security practices and compliance with legal, regulatory, and contractual requirements.This is a high impact role with deep partnership and collaboration across the company and is visible externally to our prospects, customers and partners. We have established a strong culture of security and are looking for a candidate who is as passionate about security as they are about people to continue building on the strong foundation weve built.Who We Are:We are a team that acts with honesty, integrity, and transparency. We take risks, stay humble, and are not afraid to fail. At Zapproved, you are empowered to work in the ways that support you to be real, be your best and get things done. We are a remote first company, and currently have employees located in OR, CA, WA, AZ, TX, TN, GA, and FL.What Youll Be Doing:In this role, youllPartner across departments to build, deploy, maintain and enforce security risk management standards, policies and procedures to maintain and enhance our compliance posture.Lead customer, partner, and vendor security audits, communicate results to stakeholders or business partners, and ensure remediation of outstanding issues.Represent Zapproved during the deal-cycle and customer renewal processes. Partner with Sales and Customer Success to complete customer VSQs/RFPs related to security and compliance requirements.Support legal team with negotiation around Information security contract requirements.Perform vendor security assessments and communicate risks to business managers.Support the management and tracking efforts of security remediation activities.Evaluate and investigate security alerts and logs; perform security investigations and analysis.Research and evaluate network security tools such as SIEM, IDS/IPS, DDoS prevention, etc.Promote a culture of information security throughout the organization, providing subject matter expertise, guidance, and training. Design and promote an effective security awareness and training program for the organization.Evaluate information security program maturity, security controls, and security documentation.Perform internal risk assessments and identify opportunities to improve risk posture and develop solutions for remediating or mitigating risks.Communicate and present key security initiatives, practices and issues to the Company.What Youll Need:3+ years of experience in information security, cyber risk management, compliance or a related field required.Experience helping teams remove ambiguity, enabling them to deliver quality solutions.Experience coaching, mentoring or teaching others on security best practices.Demonstrated ability to successfully handle client-facing engagements.Experience managing risk in a global enterprise.Self-motivated and results oriented with excellent interpersonal and communication skills.Strong organization, time management and project management skills.Experience in public cloud environments.An understanding of systems hardening, containerization, and cloud security controls.Familiarity with OWASP ASVS and similar frameworks.Familiarity with compliance standards such as: PCI, ISO27001/27002, SSAE-16 SOC-2, CSA STAR, and HIPAA.What Would Be Nice:CISSP, CISA, CCSP, CRISC, CISM, or similar certificationsFamiliarity with security tooling (SIEM, IDS/IPS, Vulnerability Scanners)Security experience on SaaS, IaaS, and/or PaaS cloud solutions is highly desirableWe are interested in every qualified candidate with authorization to work in the United States. However, this position is not eligible for visa sponsorship.How to Apply:Feeling inspired? We want to meet you! Please provide your resume, cover letter, and (if applicable) a link to a portfolio of your work. We read cover letters to better understand your skills, motivations, and what makes you tick - so feel free to dispense with the formalities and share with us why this seems like the best opportunity for you. If you have a disability or special need that requires accommodation, please notify a representative of the Zapproved Human Resources department at be cautious regarding illegitimate job ads or phishing scams. Zapproveds open positions will be posted on our careers page, and we encourage applicants to apply directly there. If you receive any suspicious messages claiming to be from Zapproved, please contact us at About Zapproved:Founded and headquartered in Portland, OR, Zapproved is the leading ediscovery software provider for managing corporate litigation readiness. Our Z-Discovery Suite returns power to in-house legal teams and helps them navigate electronic discovery with minimal risk and cost, setting new standards for scalability and intuitive design.We take pride in fostering an inclusive culture where diversity and innovation are celebrated, because they deliver the best results. Zapproved is proud to employ a diverse workforce, and committed to providing equal employment opportunities (EEO) to all employees and applicants. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, veteran status, disability, or any other protected status.View our Privacy Policy here: