Risk and Security Analyst

Job Summary

We are seeking a Risk and Security Analyst to oversee the security posture of our organization. This role will be responsible for ensuring compliance with security regulations and mitigating potential risks.

Duties:

• Onboard and integrate security tooling, including static application security testing (SAST) tools, continuous integration/continuous deployment (CI/CD) platforms, and software composition analysis (SCA) tools.
• Manage security exceptions within the Software Development Lifecycle (SDLC), ensuring adherence to established guidelines and standards.
• Develop and maintain Standard Operating Procedure (SOP) documentation to promote consistency and best practices across the organization.
• Provide ongoing support and guidance to developers and engineers on security tools, best practices, and compliance requirements.
• Drive continuous improvement by identifying opportunities to enhance security processes, tooling, and workflows.

Desired Skills/Experience:

• Bachelor's degree in a related field or equivalent experience.
• At least one year of experience in IT, development, DevOps, or a related technical role.
• Experience writing documentation and creating technical content.

Benefits:

• Comprehensive medical, dental, and vision insurance plans.
• A 401(k) retirement plan with company match.