Staff Security Analyst (Cybersecurity)

TL;DR

Staff Security Analyst (Cybersecurity): Leading compliance efforts for critical targets like FedRAMP Moderate and driving strategy for Business Continuity and Disaster Recovery. with an accent on proactive analysis of complex security issues and bridging business requirements with technical solutions. Focus on influencing security architecture, design across the organization, and resolving the most complex security risks.

Location: Remote, United States

Salary: USD $140,400.00 – USD $372,300.00 /Yr.

Company

hirify.global is the world’s leading AI-powered developer platform used by over 180 million developers and thousands of organizations.

What you will do

• Lead compliance efforts for products targeting the highest levels of security assurance, including FedRAMP Moderate.
• Proactively analyze highly complex issues using multiple data sources to identify security problems and define strategies.
• Drive strategy across the organization to implement a Business Continuity and Disaster Recovery (BCDR) capability.
• Lead large-scale security, architectural, and design reviews for feature areas.
• Share expertise to identify potential security issues, tools, and mitigations (e.g., threat modeling) and mentor others.
• Collaborate with leadership to resolve the most complex security issues and risks, identifying unique defects or threats.

Requirements

• 10+ years experience in security analysis, security research, cyber security, security engineering, or software engineering.
• Deep experience executing activities along the full audit life cycle for FedRAMP Mod+ or equivalent frameworks.
• Proven track record designing and testing Business Continuity and Disaster Recovery programs for large-scale SaaS environments.
• Demonstrated ability to function as a bridge between business views and technical requirements.
• Very high comfort level working under ambiguous situations, with a natural drive to bring clarity.
• 1+ year(s) leading a security function or program (e.g., Security Development Lifecycle, GRC).

Nice to have

• Deep experience executing activities along the full audit life cycle (planning, execution, reporting, remediation) for FedRAMP Mod+ or equivalent frameworks.
• Proven track record designing and testing Business Continuity and Disaster Recovery programs for large-scale SaaS environments.
• Demonstrated ability to function as a bridge between business views and technical requirements.
• Very high comfort level working under ambiguous situations, with a natural drive to bring clarity and challenge assumptions.
• 1+ year(s) leading a security function or program (e.g., Security Development Lifecycle, Governance, Risk, & Compliance [GRC]).

Culture & Benefits

• Remote-first work environment with competitive pay and excellent benefits.
• Generous learning and growth opportunities for professional development.
• Embrace diversity and inclusivity, inviting applications from all walks of life.
• Supportive environment where people flourish working on their own terms.