Security Analyst II

Lucid Software


Job Location:

Raleigh, WV - USA

Monthly Salary: Not Disclosed
Posted on: 2 days ago
Vacancies: 1 Vacancy

Job Summary

Lucid Software is the leader in visual collaboration and work acceleration helping teams see and build the future by turning ideas into reality. Our products include the Visual Collaboration Suite (Lucidchart and Lucidspark) and airfocus. We hold true to our core values: innovation in everything we do passion & excellence in every area individual empowerment initiative and ownership and teamwork over ego. At Lucid we value diverse perspectives and are dedicated to creating an environment and culture that is respectful and inclusive for everyone. Lucid is a hybrid workplace. We promote a healthy work-life balance by allowing employees to work remotely from one of our offices or a combination of the two depending on the needs of the role and team.

Since the companys founding Lucid Software has received numerous global and regional recognitions for its products business and workplace culture. These include being listed to the Forbes Cloud 100 Fast Company Most Innovative Companies Fortune Best Workplaces in Technology and PEOPLEs Companies that Care. Lucids solutions are used by more than 100 million users across the globe making Lucid the most used visual collaboration platform by the Fortune 500. Our customers include Google GE and NBC Universal and we partner with leaders such as Google Atlassian and Microsoft.

As a Security Analyst at Lucid Software you will protect our corporate assetsworld-class web applications and employees. You will focus on the execution of day-today Security Assurance operations third-party risk assessments customer trust and support GRC (Governance Risk and Compliance) operations. Lucid Softwares security team fosters an environment where business and development can quickly adapt and innovate. We stay abreast of evolving security legal and business requirements through a risk and compliance mindset. Our mission is to protect and support the objectives of the business.

Responsibilities:

  • Conduct third-party vendor risk assessments and internal risk evaluations; identify document and report on potential vulnerabilities and control gaps.
  • Respond directly to standard vendor security questionnaires and support internal teams (i.e. Sales Customer Success etc.) in answering security-related questions from prospects.
  • Assist in tracking and collecting evidence for ongoing SOC 2 and ISO 27001 compliance audits.
  • Proactively identify emerging threats and associated risks to existing business processes and corporate assets and collaborate with senior team members to develop practical security solutions.
  • Coordinate and deliver security awareness training programs to employees to foster a strong security culture.
  • Assure compliance to outside regulations affecting the Company
  • Collect and maintain impactful security and compliance metrics for team dashboards.
  • Partner with Legal Engineering IT Finance and HR to ensure corporate security policies are understood and followed.
  • Identify operational inefficiencies and areas for improvement in our existing security controls and help design smoother workflows.

Requirements:

  • Bachelors degree in information security assurance business management or a related field
  • 2-3 years of experience with third party risk management GRC customer due diligence etc.
  • Understanding of common security frameworks and principles (e.g. NIST 800-53 ISO 27001 SOC 2 etc). Strong organizational skills with the ability to manage tasks independently and meet deadlines with minimal oversight on daily routines.
  • Excellent verbal and written skills; comfortable translating security concepts into clear documentation.
  • Strong interpersonal skills with a track record of building positive relationships across non-technical teams (like Legal HR Finance) and technical teams (like IT and Engineering) to resolve security risks collaboratively.

Preferred Qualifications:

  • Prior experience working within a modern SaaS environment or cloud-first technology company with a basic familiarity of how cloud applications operate.
  • Prior knowledge of and skill in applying risk management principles and practices
  • One or more preferred Certification(s): CRISC CISSP CISA SSCP CC Security CySA etc.
  • Basic understanding of cloud environments (AWS GCP or Azure).

#LI-DA1


Required Experience:

IC

Lucid Software is the leader in visual collaboration and work acceleration helping teams see and build the future by turning ideas into reality. Our products include the Visual Collaboration Suite (Lucidchart and Lucidspark) and airfocus. We hold true to our core values: innovation in everything we ...

About Company

Company Logo

Empower the world to work visually at Lucid

View Profile View Profile