Lead Security Analyst ( Customer Trust & Security Awareness)

Melbourne

Applications have closed

Culture Amp

Empower your teams and fuel positive change with performance, development, and employee engagement tools – all-in-one intuitive employee experience platform.

View company page

Join us on our mission to make a better world of work. 

Culture Amp revolutionizes how over 25 million employees across 6,000 companies create a better world of work. As the global platform leader for employee experience, Culture Amp empowers companies of all sizes and industries to transform employee engagement, develop high performing teams, and retain talent via cutting-edge research, powerful technology, and the largest employee dataset in the world. The most innovative companies across the globe, such as Salesforce, Unilever, PwC, KIND, SoulCycle, Celonis and BigCommerce depend on Culture Amp every day.

Culture Amp is backed by 10 years of innovation, leading capital venture funds, and offices in the U.S, U.K, Germany and Australia. Culture Amp is recognized as one of the world’s top private cloud companies by Forbes and one of the most innovative workplace companies by Fast Company.

Learn more about how Culture Amp can help you create a better world of work at cultureamp.com.

Culture Amp is looking for a Lead Security Analyst - Customer Trust to lead the development and delivery of the Culture Amp cyber security awareness program, customer trust program, and 3rd party security management capability. This person will lead the support of our global sales team by ensuring the timely and accurate responses to customer questionnaires relating to Culture Amp’s security and privacy practices.

 

For the Culture Amp security education and awareness program, you will be required to provide a wide-reaching education campaign including regular phishing simulations, the maintenance of both induction and annual training modules in our PSAT tool, how-to confluence articles, and an annual security awareness month program. You and your team will help Campers understand their role in safeguarding information, technology, and services.  Monthly metrics will be compiled by you and presented to the Executive team to demonstrate the progress of the program.

 

You will oversee the timely support of customers and respond to their queries regarding due diligence and responsible for developing customer trust.  Alongside your team, you will be happy to get your hands dirty, using our library of information to respond to our customers and taking the initiative to work with other departments within Culture Amp to find answers to any unknown questions.  Monthly metric reporting for the Executive team will help you to understand the growth in customer support and ensure the timely completion of questionnaires.

 

On the flip side of the coin, you will drive and develop a capability that allows Culture Amp to do its own due diligence, support procurement activities, and assess 3rd party risks to protect Culture Amp and its customers.  Owning both parts of a similar process (customer due diligence and Culture Amp due diligence you will find synergies and automation opportunities to help us do what we do faster, better, and to create customer and camper delight) to help us manage our security risks.



Your role in the Camp

  • Oversee the cyber education and awareness strategy and corresponding activities.
  • Be a trusted security advisor to our customer facing teams
  • Build customer relationships and trust in every interaction with sales, customer success, and directly with our customers
  • Keep a sound and up to date understanding of security and privacy controls, and their current state at Culture Amp.
  • Work closely with the Risk team and business partners to identify 3rd party risks and opportunities to mitigate or transfer security risks.



What you’ll bring to Culture Amp

  • Experience in communications
  • Experience in RFP management and solution sales
  • A good understanding of security and data privacy frameworks, and the security controls and compliance requirements for various frameworks and regulations such as SOC2, ISO27001, and GDPR.
  • Solid security literacy.
  • Strong deductive reasoning and problem solving skills.

We believe that inclusive businesses are better, not just for “company results”, but for the world. We have a strong commitment to Anti-Racism, and endeavor to lead by example. Every step we make as a business towards anti-racism is another step we can take to support our customers in making a better world (of work). You can see our current commitments to Anti-Racism here.

We ensure you have the tools you need to thrive both in and out of work.

  • MacBooks for you to do your best work 

  • Share Options - it’s important to us that everyone is an owner and can share in our success

    • Medical insurance - for you and your family so you can feel safe in these uncertain times

  • Excellent parental leave and in work support programme, - for those families to be

  • Flexible working schedule - where we can, let’s make work, work for you

  • Fun and inclusive digital, and in-person events

Most importantly, an opportunity to really make a difference in people’s lives.

Please keep reading...

Research shows that candidates from underrepresented backgrounds often don't apply for roles if they don't meet all the criteria – unlike majority candidates meeting significantly fewer requirements.

We strongly encourage you to apply if you’re interested: we'd love to know how you can amplify our team with your unique experience!

 

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Automation Cloud Compliance GDPR ISO 27001 Privacy SOC 2 Strategy

Perks/benefits: Equity Flex hours Health care Medical leave Parental leave Startup environment Team events

Region: Asia/Pacific
Country: Australia
Job stats:  8  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.