Lead Security Analyst (Remote)

Posted 14 days agoViewed

💎 Seniority level: Lead, 5+ years

📍 Location: United States

💸 Salary: 140000.0 - 160000.0 USD per year

🔍 Industry: Software Development

🏢 Company: HackerRank👥 100-500💰 $60,000,000 Series D almost 3 years ago🫂 Last layoff over 1 year agoEmployment Service Industry Skill Assessment Recruiting

🗣️ Languages: English

⏳ Experience: 5+ years

🪄 Skills: AWSPythonSQLAWS EKSCybersecurityData AnalysisKubernetesLDAPMicrosoft Active DirectoryCommunication SkillsAnalytical SkillsCI/CDProblem SolvingCustomer serviceAgile methodologiesRESTful APIsLinuxDevOpsTerraformWritten communicationComplianceJSONRisk ManagementAnsibleScripting

Requirements:

5+ years of experience in information security, risk management, or security operations, with a focus on customer-facing security support.
Strong communication skills to engage confidently with customers, address security concerns, and build trust.
Hands-on experience with security frameworks such as ISO 27001, SOC 2, GDPR, and NIST compliance.
Proficiency in security operations including monitoring, incident response, and vulnerability management.
Ability to balance security and business needs, ensuring protection without slowing down product development or operations.
Experience in automation and process improvement to streamline security workflows and reduce overhead.

Responsibilities:

Continuously monitor security tools and logs to identify potential threats.
Investigate alerts and coordinate with engineering or DevOps teams for incident response.
Serve as the first point of contact for responding to security-related customer queries or tickets (e.g., data handling, compliance, vulnerabilities).
Participate in security review calls with customers and prospects to provide reassurance about HackerRank’s security posture.
Fill out IT security questionnaires from customers in a timely and accurate manner.
Be available to answer customer follow-ups regarding security concerns.
Draft and update the security policies (e.g., password management, BYOD, vendor risk assessments).
Help maintain compliance with security standards (e.g., ISO 27001, SOC 2, GDPR) and gather necessary evidence during audits.
Conduct or coordinate vulnerability scans and penetration testing.
Work closely with product teams to ensure timely patching and remediation of critical vulnerabilities.
Conduct training sessions and internal communications to educate staff on phishing, social engineering, and other security best practices.
Act as the first line of investigation for potential security incidents across the company.
Escalate complex or severe security issues to the CTO/CISO as needed.

Apply