Security Analyst – Governance, Risk, and Compliance

This is a fully remote position, open to applicants in United States.

📋 Description

• Work alongside stakeholders to develop and implement security controls that form the foundation of the LaunchDarkly GRC program.

• Leverage technology to streamline compliance activities such as evidence collection and control verification.

• Enhance the health and maturity of the program by monitoring metrics derived from both quantitative and qualitative data.

• Propel advancements toward outcomes in GRC-related continuous improvement initiatives.

• Assist in creating documentation for security standards, policies, and processes.

• Facilitate audits and assessments in collaboration with both internal and external stakeholders.

• Collaborate with product and infrastructure delivery teams on engineering projects that pertain to GRC requirements.

⛳️ Requirements

• Extensive knowledge and expertise in cybersecurity, privacy, and risk management.

• Exceptional communication abilities, both written and verbal.

• Proven experience in collaborative project work.

• In-depth understanding of modern cloud-based SaaS organizations, particularly within AWS control environments.

• Background in information security at organizations with substantial compliance obligations.

• Strong familiarity with security standards such as SOC 2, ISO 27001, ISO 27701, and FedRAMP, along with privacy legislations like CCPA and GDPR.

• Acquaintance with LaunchDarkly’s collaborative tools, including Confluence, Slack, and GitHub.

🏝️ Benefits

• Restricted Stock Units (RSUs).

• Health, vision, and dental insurance.

• Mental health benefits.