Associate Security Analyst
Denver HQ or US remote
CyberGRX
Using sophisticated data analytics, real-world attack scenarios, and real-time threat intelligence, we provide a complete portfolio analysis of your third-party ecosystem, helping you to prioritize your risks and make smarter decisions.We are searching for an Associate Security Analyst!
First, what is CyberGRX?
CyberGRX is at the cutting edge of cybersecurity technology by providing enterprises and their third-party vendors with the most cost-effective and scalable approach to cyber risk management. With 63% of data breaches being linked to a third party, CyberGRX arms organizations with the data and advanced analytics to efficiently manage, monitor and mitigate risk in their partner ecosystems. Built on the market's first third-party cyber risk Exchange, CyberGRX combines both third-party vendors and enterprise organizations in one easy-to-navigate platform to streamline the risk assessment process.
What does an Associate Security Analyst do at CyberGRX?
Security Analysts play a vital role in securing CyberGRX’s sensitive data, information systems, and personnel. Analysts work inter-departmentally to identify, research, and address specific flaws in the company’s information systems and procedures, while recommending measures that will improve CyberGRX’s overall security posture. As a Security Analyst you will be immersed in the world of cybersecurity that is constantly evolving and facilitating new challenges and opportunities to advance your knowledge and skills. This role requires an inquisitive mind, exceptional attention to detail, and the ability to manage multiple concurrent workflows and projects.
What a day in the life looks like (Role Responsibilities):
- You will learn how to monitor and respond to notifications and alerts from security tools such as Lacework, Tenable, Cylance, Google Workspace, etc.
- You will evaluate the security of third-party vendors and collaborating with them to develop corrective action plans
- You will analyze security incident data to identify and document root causes
- You will research security vulnerabilities and industry trends
- You will perform routine security activities such as access review audits
- You will assist in the maintenance of the company’s security governance documentation (policies, plans, and standards)
- You will manage the security awareness training program, including designing and conducting internal phishing campaigns
- You will manage the Risk Register including working with appropriate stakeholders to address identified risks
What you bring to the table (Qualifications/Skills):
- You have already demonstrated a burning desire to understand cybersecurity concepts and work in the cybersecurity industry
- You have at minimum, a basic knowledge of fundamental security principles such as threats, vulnerabilities, and risks
- You bring an inquisitive and knowledge seeking mindset
- You have a structured and detail-oriented work mentality
- You have a knack for creative problem solving
- You take joy in successfully completing recurring tasks
- You have strong writing and documentation skills
- You have excellent interpersonal skills
- You are a “self-starter”, who is intrinsically motivated
- Bonus points if you have the following:
- You have successfully completed the Sec+, Network+, or similar certifications
- You have completed any formal training or degrees in information technology or security domains
- You have built personal computers or home networks for fun
- You have completed an internship or year of work in an IT or other tech-based role
Why you want to work for CyberGRX:
- We offer a competitive base salary (commensurate with experience) plus incentive compensation.
- We have an incredible benefits package including:
- 100% Company paid medical/dental/vision for employees & generous company contribution for dependent health benefits
- 401(k) program, including employer match up to 3% of your base salary
- $100/month stipend to use for wellness and WFH expenses
- Equity – Acting like an owner is one of our Core Values
- Remote Friendly Work Environment
- Open Time Off policy - Take the time you need when you need it.
- We are doing new and exciting things and have big plans for growth!
Annual Base Salary Range: $55,000 - $65,000
Annual Bonus Potential: 10% of base salary
We encourage you to apply if this role excites you - even if you think you may not have the exact skillset. We believe in cultivating an environment where there is a diversity of perspectives, in hopes that we can all thrive in an inclusive environment.
CyberGRX does not discriminate in employment matters on the basis of race, color, religion, gender, national origin, age, military service eligibility, veteran status, sexual orientation, marital status, disability, or any other protected class. We support workplace diversity.
*CyberGRX requires employees working in the office and attending in-person company events to be fully vaccinated against COVID-19.
Tags: Analytics Audits Governance Risk assessment Risk management Vulnerabilities
Perks/benefits: 401(k) matching Career development Competitive pay Equity Flex vacation Health care Home office stipend Salary bonus Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs